Updates from: 05/19/2021 03:10:02
Service Microsoft Docs article Related commit history on GitHub Change details
v1.0 Authenticationcontextclassreference Get https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/authenticationcontextclassreference-get.md
+
+ Title: "Get authenticationContextClassReference"
+description: "Retrieve the properties and relationships of a authenticationContextClassReference object."
+localization_priority: Normal
+++
+# Get authenticationContextClassReference
+
+Namespace: microsoft.graph
++
+Retrieve the properties and relationships of a [authenticationContextClassReference](../resources/authenticationcontextclassreference.md) object.
+
+## Permissions
+
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
+
+|Permission type | Permissions (from least to most privileged) |
+|:--|:-|
+|Delegated (work or school account) | Policy.Read.ConditionalAccess |
+|Delegated (personal Microsoft account) | Not supported. |
+|Application | Policy.Read.ConditionalAccess |
+
+## HTTP request
+
+<!-- { "blockType": "ignored" } -->
+
+```http
+GET /identity/conditionalAccess/authenticationContextClassReferences/{id}
+```
+## Optional query parameters
+
+This method does not support optional query parameters to customize the response.
+
+## Request headers
+
+| Name |Description|
+|:-|:-|
+| Authorization | Bearer {token} |
+
+## Request body
+
+This method supports the `$select` OData query parameter to help customize the response. For general information, see [OData query parameters](/graph/query-parameters).
+
+## Response
+
+If successful, this method returns a `200 OK` response code and the requested [authenticationContextClassReferences](../resources/\authenticationcontextclassreference.md) object in the response body.
+
+## Examples
+
+### Request
+
+The following is an example of the request.
++
+<!-- {
+ "blockType": "request",
+ "name": "get_authenticationcontextclassreference"
+}-->
+
+```msgraph-interactive
+GET https://graph.microsoft.com/beta/identity/conditionalAccess/authenticationContextClassReferences/c1
+```
+++
+### Response
+
+The following is an example of the response.
+
+> **Note:** The response object shown here might be shortened for readability. All the properties will be returned from an actual call.
+
+<!-- {
+ "blockType": "response",
+ "truncated": true,
+ "@odata.type": "microsoft.graph.authenticationContextClassReference"
+} -->
+
+```http
+HTTP/1.1 200 OK
+Content-Type: application/json
+
+{
+ "@odata.context": "https://graph.microsoft.com/beta/$metadata#conditionalAccess/authenticationContextClassReferences/$entity",
+ "id": "c1",
+ "displayName": "Contoso medium",
+ "description": "Medium protection level defined for Contoso policy",
+ "isAvailable": false
+}
+
+```
+
+<!-- uuid: 16cd6b66-4b1a-43a1-adaf-3a886856ed98
+2019-02-04 14:57:30 UTC -->
+<!-- {
+ "type": "#page.annotation",
+ "description": "Get authenticationContextClassReference",
+ "keywords": "",
+ "section": "documentation",
+ "tocPath": ""
+}-->
v1.0 Authenticationcontextclassreference Update https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/authenticationcontextclassreference-update.md
+
+ Title: "Update authenticationContextClassReference"
+description: "Update the properties of a authenticationContextClassReference object."
+localization_priority: Normal
+++
+# Update authenticationContextClassReference
+
+Namespace: microsoft.graph
++
+Update the properties of an [authenticationContextClassReference](../resources/authenticationcontextclassreference.md) object.
+
+## Permissions
+
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
+
+|Permission type | Permissions (from least to most privileged) |
+|:--|:|
+|Delegated (work or school account) | Policy.ReadWrite.ConditionalAccess |
+|Delegated (personal Microsoft account) | Not supported. |
+|Application | Policy.ReadWrite.ConditionalAccess |
+
+> [!NOTE]
+> This API has a [known issue](/graph/known-issues#permissions) related to permissions.
+
+## HTTP request
+
+<!-- { "blockType": "ignored" } -->
+
+```http
+PATCH /identity/conditionalAccess/authenticationContextClassReferences/{id}
+```
+
+## Request headers
+
+| Name | Description |
+|:--|:--|
+| Authorization | Bearer {token}. Required. |
+| Content-Type | application/json. Required. |
+
+## Request body
+
+In the request body, supply the values for relevant properties that should be updated. Existing properties that are not included in the request body maintain their previous values or are recalculated based on changes to other property values. For best performance, don't include existing values that haven't changed.
+
+For the list of properties, see [authenticationContextClassReference](../resources/authenticationContextClassReference.md).
+
+## Response
+
+If successful, this method returns a `204 No Content` response code. It does not return anything in the response body.
+
+## Examples
+
+### Request
+
+The following is an example of the request.
+
+<!-- {
+ "blockType": "request",
+ "name": "update_authenticationcontextclassreference"
+}-->
+
+```http
+PATCH https://graph.microsoft.com/beta/identity/conditionalAccess/authenticationContextClassReferences/c1
+Content-type: application/json
+
+{
+ "value":
+ [
+ {
+ "displayName": "Contoso trusted locations",
+ "description": "Access is only allowed from trusted locations",
+ "isAvailable": true
+ }
+ ]
+}
+```
+++
+### Response
+
+The following is an example of the response.
+
+<!-- {
+ "blockType": "response",
+ "truncated": false
+} -->
+
+```http
+HTTP/1.1 204 No Content
+```
++
+<!-- uuid: 16cd6b66-4b1a-43a1-adaf-3a886856ed98
+2019-02-04 14:57:30 UTC -->
+<!-- {
+ "type": "#page.annotation",
+ "description": "Update authenticationContextClassReference",
+ "keywords": "",
+ "section": "documentation",
+ "tocPath": ""
+}-->
v1.0 B2cidentityuserflow Put Apiconnectorconfiguration https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/b2cidentityuserflow-put-apiconnectorconfiguration.md
HTTP/1.1 204 No Content
The following is an example of the request.
-# [HTTP](#tab/http)
<!-- { "blockType": "request", "name": "put_b2cuserflows-apiconnectorconfiguration_disable-postAttributeCollection"
Content-Type: application/json
{ } ```
-# [JavaScript](#tab/javascript)
-
-# [Objective-C](#tab/objc)
-
-# [Java](#tab/java)
--- #### Response
v1.0 B2xidentityuserflow Put Apiconnectorconfiguration https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/b2xidentityuserflow-put-apiconnectorconfiguration.md
HTTP/1.1 204 No Content
The following is an example of the request. -
-# [HTTP](#tab/http)
<!-- { "blockType": "request", "name": "put_b2xuserflows-apiconnectorconfiguration_disable-postAttributeCollection"
Content-Type: application/json
{ } ```
-# [JavaScript](#tab/javascript)
-
-# [Objective-C](#tab/objc)
-
-# [Java](#tab/java)
-- #### Response
v1.0 Conditionalaccessroot List Authenticationcontextclassreferences https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/conditionalaccessroot-list-authenticationcontextclassreferences.md
+
+ Title: "List authenticationContextClassReferences"
+description: "Retrieve a list of authenticationContextClassReference objects."
+localization_priority: Normal
+++
+# List authenticationContextClassReferences
+
+Namespace: microsoft.graph
++
+Retrieve a list of [authenticationContextClassReference](../resources/authenticationcontextclassreference.md) objects.
+
+## Permissions
+
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
+
+|Permission type | Permissions (from least to most privileged) |
+|:--|:-|
+|Delegated (work or school account) | Policy.Read.ConditionalAccess, Policy.ReadWrite.ConditionalAccess |
+|Delegated (personal Microsoft account) | Not supported. |
+|Application | Policy.Read.ConditionalAccess, Policy.ReadWrite.ConditionalAccess |
+
+## HTTP request
+
+<!-- { "blockType": "ignored" } -->
+
+```http
+GET /identity/conditionalAccess/authenticationContextClassReferences
+```
+## Optional query parameters
+
+This method supports the `$filter` and `$select` OData query parameters to help customize the response. For general information, see [OData query parameters](/graph/query-parameters).
+
+## Request headers
+
+| Name |Description|
+|:-|:-|
+| Authorization | Bearer {token} |
+
+## Request body
+
+Do not supply a request body for this method.
+
+## Response
+
+If successful, this method returns a `200 OK` response code and a collection of [authenticationContextClassReference](..\resources\authenticationcontextclassreference.md) objects in the response body.
+
+## Examples
+
+### Request
+
+The following is an example of the request.
+
+# [HTTP](#tab/http)
+<!-- {
+ "blockType": "request",
+ "name": "get_authenticationcontextclassreference"
+}-->
+
+```msgraph-interactive
+GET https://graph.microsoft.com/beta/identity/conditionalAccess/authenticationContextClassReferences
+```
+++
+### Response
+
+The following is an example of the response.
+
+> **Note:** The response object shown here might be shortened for readability. All the properties will be returned from an actual call.
+
+<!-- {
+ "blockType": "response",
+ "truncated": false,
+ "@odata.type": "microsoft.graph.authenticationContextClassReference",
+ "isCollection": true
+} -->
+
+```http
+HTTP/1.1 200 OK
+Content-type: application/json
++
+{
+ "@odata.context": "https://graph.microsoft.com/beta/$metadata#/conditionalAccess/authenticationContextClassReferences",
+ "value": [
+ {
+ "id": "c1",
+ "displayName": "Contoso trusted locations",
+ "description": "Access is only allowed from trusted locations",
+ "isAvailable": true
+ }
+ ]
+}
++
+```
+
+<!-- uuid: 16cd6b66-4b1a-43a1-adaf-3a886856ed98
+2019-02-04 14:57:30 UTC -->
+<!-- {
+ "type": "#page.annotation",
+ "description": "List authenticationContextClassReferences",
+ "keywords": "",
+ "section": "documentation",
+ "tocPath": ""
+}-->
v1.0 Conditionalaccessroot Post Authenticationcontextclassreferences https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/conditionalaccessroot-post-authenticationcontextclassreferences.md
+
+ Title: "Create authenticationContextClassReference"
+description: "Create a new authenticationContextClassReference."
+localization_priority: Normal
+++
+# Create authenticationContextClassReference
+
+Namespace: microsoft.graph
++
+Create a new [authenticationContextClassReference](../resources/authenticationContextClassReference.md).
+
+## Permissions
+
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
+
+|Permission type | Permissions (from least to most privileged) |
+|:--|:|
+|Delegated (work or school account) | Policy.ReadWrite.ConditionalAccess |
+|Delegated (personal Microsoft account) | Not supported. |
+|Application | Policy.ReadWrite.ConditionalAccess |
+
+> [!NOTE]
+> This API has a [known issue](/graph/known-issues#permissions) related to permissions.
+
+## HTTP request
+
+<!-- { "blockType": "ignored" } -->
+
+```http
+POST /identity/conditionalAccess/authenticationContextClassReferences
+```
+
+## Request headers
+
+| Name | Description |
+|:--|:--|
+| Authorization | Bearer {token}. Required. |
+| Content-Type | application/json. Required. |
+
+## Request body
+
+In the request body, supply a JSON representation of a [authenticationContextClassReference](../resources/authenticationcontextclassreference.md) object.
+
+## Response
+
+If successful, this method returns a `201 Created` response code and a new [authenticationContextClassReference](../resources/authenticationcontextclassreference.md) object in the response body.
+
+## Examples
+
+### Request
+The following example shows creating a new authenticationcontextclassreference that is available for apps to use.
+++
+<!-- {
+ "blockType": "request",
+ "name": "create_authenticationcontextclassreference"
+}-->
+
+```http
+POST https://graph.microsoft.com/beta/identity/conditionalAccess/authenticationContextClassReferences
+Content-type: application/json
+
+{
+ "id": "c1",
+ "displayName": "Contoso medium",
+ "description": "Medium protection level defined for Contoso policy",
+ "isAvailable": true
+}
+
+```
+++
+#### Response
+
+The following is an example of the response.
+<!-- {
+ "blockType": "response",
+ "truncated": false,
+ "@odata.type": "microsoft.graph.authenticationContextClassReference"
+} -->
+
+```http
+HTTP/1.1 200 OK
+Content-Type: application/json
+
+{
+ "@odata.context": "https://graph.microsoft.com/beta/$metadata#conditionalAccess/authenticationContextClassReference/$entity",
+ "id": "c1",
+ "displayName": "Contoso medium",
+ "description": "Medium protection level defined for Contoso policy",
+ "isAvailable": true
+}
+
+```
+
+<!-- uuid: 16cd6b66-4b1a-43a1-adaf-3a886856ed98
+2019-02-04 14:57:30 UTC -->
+<!-- {
+ "type": "#page.annotation",
+ "description": "Create authenticationContextClassReference",
+ "keywords": "",
+ "section": "documentation",
+ "tocPath": ""
+}-->
v1.0 Identityproviderbase List Availableprovidertypes https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/identityproviderbase-list-availableprovidertypes.md
Content-Type: application/json
### Request The following is an example of the request.
-# [HTTP](#tab/http)
- # [HTTP](#tab/http) <!-- { "blockType": "request",
v1.0 Identityproviderbase Post Identityproviders https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/identityproviderbase-post-identityproviders.md
Content-type: application/json
The following is an example of the request. -
-# [HTTP](#tab/http)
<!-- { "blockType": "request", "name": "create_applemanagedidentityprovider_from_identityproviderbase"
Content-length: 154
"certificateData": "******" } ```
-# [JavaScript](#tab/javascript)
-
-# [Objective-C](#tab/objc)
----- #### Response
v1.0 Mobileappmanagementpolicies Delete Includedgroups https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/mobileappmanagementpolicies-delete-includedgroups.md
+
+ Title: "Delete includedGroup"
+description: "Delete a group from the list of groups included in a mobile app management policy."
+
+localization_priority: Normal
++
+# Delete includedGroup
+
+Namespace: microsoft.graph
++
+Delete a group from the list of groups included in a mobile app management policy.
+
+## Permissions
+
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
+
+|Permission type|Permissions (from least to most privileged)|
+|:|:|
+|Delegated (work or school account)|Policy.ReadWrite.All|
+|Delegated (personal Microsoft account) | Not supported.|
+|Application | Not supported.|
+
+## HTTP request
+
+<!-- {
+ "blockType": "ignored"
+}
+-->
+
+``` http
+DELETE /policies/mobileAppManagementPolicies/{id}/includedGroups/{id}/$ref
+```
+
+## Request headers
+
+|Name|Description|
+|:|:|
+|Authorization|Bearer {token}. Required.|
+
+## Request body
+
+Do not supply a request body for this method.
+
+## Response
+
+If successful, this method returns `204 No Content` response code. It does not return anything in the response body.
+
+## Examples
+
+### Request
+
+<!-- {
+ "blockType": "request",
+ "name": "delete_group"
+}
+-->
+
+```http
+DELETE https://graph.microsoft.com/beta/policies/mobileAppManagementPolicies/ab90bacf-55a3-4a3e-839a-aa4b74e4f020/includedGroups/1a9db3ab-0acf-4808-99ae-e8ed581cb2e0/$ref
+```
+
+### Response
+
+<!-- {
+ "blockType": "response",
+ "truncated": true
+}
+-->
+
+``` http
+HTTP/1.1 204 No Content
+```
v1.0 Mobileappmanagementpolicies Get https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/mobileappmanagementpolicies-get.md
+
+ Title: "Get mobileAppManagementPolicy"
+description: "Read the properties and relationships of a mobile app management policy."
+
+localization_priority: Normal
++
+# Get mobileAppManagementPolicy
+
+Namespace: microsoft.graph
++
+Read the properties and relationships of a [mobilityManagementPolicy](../resources/mobilitymanagementpolicy.md) object.
+
+## Permissions
+
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
+
+|Permission type|Permissions (from least to most privileged)|
+|:|:|
+|Delegated (work or school account)|Policy.Read.All, Policy.ReadWrite.All|
+|Delegated (personal Microsoft account) | Not supported.|
+|Application | Not supported.|
+
+## HTTP request
+
+<!-- {
+ "blockType": "ignored"
+}
+-->
+
+``` http
+GET /policies/mobileAppManagementPolicies/{id}
+```
+
+## Request headers
+
+|Name|Description|
+|:|:|
+|Authorization|Bearer {token}. Required.|
+
+## Request body
+
+Do not supply a request body for this method.
+
+## Response
+
+If successful, this method returns a `200 OK` response code and a [mobilityManagementPolicy](../resources/mobilitymanagementpolicy.md) object in the response body.
+
+## Examples
+
+### Request
+
+<!-- {
+ "blockType": "request",
+ "name": "get_mobilitymanagementpolicy"
+}
+-->
+
+``` http
+GET https://graph.microsoft.com/beta/policies/mobileAppManagementPolicies/ab90bacf-55a3-4a3e-839a-aa4b74e4f020
+```
+
+### Response
+
+>**Note:** The response object shown here might be shortened for readability.
+<!-- {
+ "blockType": "response",
+ "truncated": true,
+ "@odata.type": "microsoft.graph.mobilityManagementPolicy"
+}
+-->
+
+``` http
+HTTP/1.1 200 OK
+Content-Type: application/json
+
+{
+ "value": {
+ "id": "ab90bacf-55a3-4a3e-839a-aa4b74e4f020",
+ "appliesTo": "selected",
+ "complianceUrl": "https://portal.mam.contoso.com/?portalAction=Compliance",
+ "description": "Contoso mobilty app is a cloud-based Endpoint Management solution for managing Windows.",
+ "discoveryUrl": "https://enrollment.mam.contoso.com/enrollmentserver/discovery.svc",
+ "displayName": "Contoso mobilty app",
+ "termsOfUseUrl": "https://portal.mam.contoso.com/TermsofUse.aspx",
+ "includedGroups": [
+ {
+ "id": "800c583d-cc3d-4361-8e4a-3fbf668f27f4",
+ "displayName": "Test Group"
+ }
+ ]
+ }
+}
+```
v1.0 Mobileappmanagementpolicies List Includedgroups https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/mobileappmanagementpolicies-list-includedgroups.md
+
+ Title: "List includedGroups"
+description: "Get the list of groups that are included in a mobile app management policy."
+
+localization_priority: Normal
++
+# List includedGroups
+
+Namespace: microsoft.graph
++
+Get the list of groups that are included in a mobile app management policy.
+
+## Permissions
+
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
+
+|Permission type|Permissions (from least to most privileged)|
+|:|:|
+|Delegated (work or school account)|Policy.Read.All, Policy.ReadWrite.All|
+|Delegated (personal Microsoft account) | Not supported.|
+|Application | Not supported.|
+
+## HTTP request
+
+<!-- {
+ "blockType": "ignored"
+}
+-->
+
+``` http
+GET /policies/mobileAppManagementPolicies/{id}/includedGroups
+```
+
+## Request headers
+
+|Name|Description|
+|:|:|
+|Authorization|Bearer {token}. Required.|
+
+## Request body
+
+Do not supply a request body for this method.
+
+## Response
+
+If successful, this method returns a `200 OK` response code and a collection of [group](../resources/group.md) objects in the response body.
+
+## Examples
+
+### Request
+
+<!-- {
+ "blockType": "request",
+ "name": "list_group"
+}
+-->
+
+``` http
+GET https://graph.microsoft.com/beta/policies/mobileAppManagementPoliciesab90bacf-55a3-4a3e-839a-aa4b74e4f020/includedGroups
+```
+
+### Response
+
+>**Note:** The response object shown here might be shortened for readability.
+<!-- {
+ "blockType": "response",
+ "truncated": true,
+ "@odata.type": "Collection(microsoft.graph.group)"
+}
+-->
+
+``` http
+HTTP/1.1 200 OK
+Content-Type: application/json
+
+{
+ "value": [
+ {
+ "id": "800c583d-cc3d-4361-8e4a-3fbf668f27f4",
+ "displayName": "Test Group"
+ }
+ ]
+}
+```
v1.0 Mobileappmanagementpolicies List https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/mobileappmanagementpolicies-list.md
+
+ Title: "List mobileAppManagementPolicies"
+description: "Get a list of the mobile app management policy objects and their properties."
+
+localization_priority: Normal
++
+# List mobileAppManagementPolicies
+
+Namespace: microsoft.graph
++
+Get a list of the [mobilityManagementPolicy](../resources/mobilitymanagementpolicy.md) objects and their properties.
+
+## Permissions
+
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
+
+|Permission type|Permissions (from least to most privileged)|
+|:|:|
+|Delegated (work or school account)|Policy.Read.All, Policy.ReadWrite.All|
+|Delegated (personal Microsoft account) | Not supported.|
+|Application | Not supported.|
+
+## HTTP request
+
+<!-- {
+ "blockType": "ignored"
+}
+-->
+
+``` http
+GET /policies/mobileAppManagementPolicies
+```
+
+## Optional query parameters
+
+This method supports some of the OData query parameters to help customize the response. For example:
+
+- To select specific attributes add `$select=id,displayname`.
+- To retrieve included groups for each policy, add `$expand=includedGroups`.
+- To filter based on an attribute, use `$filter=displayName eq 'Microsoft Intune'`.
+
+For general information, see [OData query parameters](/graph/query-parameters).
+
+## Request headers
+
+|Name|Description|
+|:|:|
+|Authorization|Bearer {token}. Required.|
+
+## Request body
+
+Do not supply a request body for this method.
+
+## Response
+
+If successful, this method returns a `200 OK` response code and a collection of [mobilityManagementPolicy](../resources/mobilitymanagementpolicy.md) objects in the response body.
+
+## Examples
+
+### Request
+
+<!-- {
+ "blockType": "request",
+ "name": "list_mobilitymanagementpolicy"
+}
+-->
+
+``` http
+GET https://graph.microsoft.com/beta/policies/mobileAppManagementPolicies
+```
+
+### Response
+
+>**Note:** The response object shown here might be shortened for readability.
+<!-- {
+ "blockType": "response",
+ "truncated": true,
+ "@odata.type": "microsoft.graph.mobilityManagementPolicy"
+}
+-->
+
+``` http
+HTTP/1.1 200 OK
+Content-Type: application/json
+
+{
+ "value": [
+ {
+ "@odata.type": "#microsoft.graph.mobilityManagementPolicy",
+ "id": "ab90bacf-55a3-4a3e-839a-aa4b74e4f020",
+ "appliesTo": "selected",
+ "complianceUrl": "https://portal.manage.contoso.com/?portalAction=Compliance",
+ "description": "Contoso mobilty app is a cloud-based Endpoint Management solution for managing Windows.",
+ "discoveryUrl": "https://enrollment.manage.contoso.com/enrollmentserver/discovery.svc",
+ "displayName": "Contoso mobilty app",
+ "termsOfUseUrl": "https://portal.manage.contoso.com/TermsofUse.aspx",
+ "includedGroups": [
+ {
+ "id": "800c583d-cc3d-4361-8e4a-3fbf668f27f4",
+ "displayName": "Test Group"
+ }
+ ]
+ }
+ ]
+}
+```
+
+<!-- uuid: 5c98f801-d1c4-44eb-ac11-f72b6754deda
+2020-03-23T22:34:45.203Z -->
+<!-- {
+ "type": "#page.annotation",
+ "description": "List mobileAppManagementPolicies",
+ "keywords": "",
+ "section": "documentation",
+ "tocPath": ""
+}-->
v1.0 Mobileappmanagementpolicies Post Includedgroups https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/mobileappmanagementpolicies-post-includedgroups.md
+
+ Title: "Add includedGroups"
+description: "Add groups to be included in a mobile app management policy."
+
+localization_priority: Normal
++
+# Add includedGroups
+
+Namespace: microsoft.graph
++
+Add groups to be included in a mobile app management policy.
+
+## Permissions
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
+
+|Permission type|Permissions (from least to most privileged)|
+|:|:|
+|Delegated (work or school account)|Policy.Read.All, Policy.ReadWrite.All|
+|Delegated (personal Microsoft account) | Not supported.|
+|Application | Not supported.|
+
+## HTTP request
+
+<!-- {
+ "blockType": "ignored"
+}
+-->
+
+``` http
+POST /policies/mobileAppManagementPolicies/{id}/includedGroups/$ref
+```
+
+## Request headers
+|Name|Description|
+|:|:|
+|Authorization|Bearer {token}. Required.|
+|Content-Type|application/json. Required.|
+
+## Request body
+In the request body, supply a JSON representation of the [group](../resources/group.md) object.
+
+The following table shows the properties that are required when you add the [group](../resources/group.md).
+
+|Property|Type|Description|
+|:|:|:|
+|id|String|The unique identifier for the group.|
+
+## Response
+
+If successful, this method returns a `204 No Content` response code and a [group](../resources/group.md) object in the response body.
+
+## Examples
+
+### Request
+
+<!-- {
+ "blockType": "request",
+ "name": "create_group_from_groups"
+}
+-->
+
+``` http
+POST https://graph.microsoft.com/beta/policies/mobileAppManagementPolicies/ab90bacf-55a3-4a3e-839a-aa4b74e4f020/includedGroups/$ref
+Content-Type: application/json
+
+{
+ "@odata.id": "https://graph.microsoft.com/odata/groups('1a9db3ab-0acf-4808-99ae-e8ed581cb2e0')"
+}
+```
+
+### Response
+
+<!-- {
+ "blockType": "response",
+ "truncated": true
+}
+-->
+
+``` http
+HTTP/1.1 204 No Content
+```
v1.0 Mobileappmanagementpolicies Update https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/mobileappmanagementpolicies-update.md
+
+ Title: "Update mobileAppManagementPolicy"
+description: "Update the properties of a mobile app management policy object."
+
+localization_priority: Normal
++
+# Update mobileAppManagementPolicy
+
+Namespace: microsoft.graph
++
+Update the properties of a [mobilityManagementPolicy](../resources/mobilitymanagementpolicy.md) object.
+
+## Permissions
+
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
+
+|Permission type|Permissions (from least to most privileged)|
+|:|:|
+|Delegated (work or school account)|Policy.Read.All, Policy.ReadWrite.All|
+|Delegated (personal Microsoft account) | Not supported.|
+|Application | Not supported.|
+
+## HTTP request
+
+<!-- {
+ "blockType": "ignored"
+}
+-->
+
+``` http
+PATCH /policies/mobileAppManagementPolicies/{id}
+```
+
+## Request headers
+
+|Name|Description|
+|:|:|
+|Authorization|Bearer {token}. Required.|
+|Content-Type|application/json. Required.|
+
+## Request body
+
+In the request body, supply a JSON representation of the [mobilityManagementPolicy](../resources/mobilitymanagementpolicy.md) object.
+
+In the request body, supply the values for fields listed below that should be updated. **Note:** You cannot use `PATCH` operation for `appliesTo` with the other properties.
+
+|Property|Type|Description|
+|:|:|:|
+|appliesTo|policyScope|Determines the groups this policy setting applies to. Possible values are: `none`, `all`, `selected` **Important:** `selected` cannot be used when specifying this property. Use [includedGroups](../api/mobileappmanagementpolicies-post-includedgroups.md) to add specific groups.|
+|complianceUrl|String|Compliance URL of the mobility management application|
+|discoveryUrl|String|Discovery URL of the mobility management application|
+|termsOfUseUrl|String|Terms of Use URL of the mobility management application|
+
+## Response
+
+If successful, this method returns a `200 OK` response code and an updated [mobilityManagementPolicy](../resources/mobilitymanagementpolicy.md) object in the response body.
+
+## Examples
+
+### Request
+
+<!-- {
+ "blockType": "request",
+ "name": "update_mobilitymanagementpolicy"
+}
+-->
+
+``` http
+PATCH https://graph.microsoft.com/beta/policies/mobileAppManagementPolicies/ab90bacf-55a3-4a3e-839a-aa4b74e4f020
+Content-Type: application/json
+
+{
+ "@odata.type": "#microsoft.graph.mobilityManagementPolicy",
+ "complianceUrl": "https://portal.mg.contoso.com/?portalAction=Compliance",
+ "discoveryUrl": "https://enrollment.mg.contoso.com/enrollmentserver/discovery.svc",
+ "termsOfUseUrl": "https://portal.mg.contoso.com/TermsofUse.aspx"
+}
+```
+
+### Response
+
+<!-- {
+ "blockType": "response",
+ "truncated": true
+}
+-->
+
+``` http
+HTTP/1.1 204 No Content
+```
v1.0 Mobiledevicemanagementpolicies Delete Includedgroups https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/mobiledevicemanagementpolicies-delete-includedgroups.md
+
+ Title: "Delete includeGroup"
+description: "Delete a group from the list of groups included in a mobile device management policy."
+
+localization_priority: Normal
++
+# Delete includedGroup
+
+Namespace: microsoft.graph
++
+Delete a group from the list of groups included in a mobile device management policy.
+
+## Permissions
+
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
+
+|Permission type|Permissions (from least to most privileged)|
+|:|:|
+|Delegated (work or school account)|Policy.ReadWrite.All|
+|Delegated (personal Microsoft account) | Not supported.|
+|Application | Not supported.|
+
+## HTTP request
+
+<!-- {
+ "blockType": "ignored"
+}
+-->
+
+``` http
+DELETE /policies/mobileDeviceManagementPolicies/{id}/includedGroups/{id}/$ref
+```
+
+## Request headers
+
+|Name|Description|
+|:|:|
+|Authorization|Bearer {token}. Required.|
+
+## Request body
+
+Do not supply a request body for this method.
+
+## Response
+
+If successful, this method returns a `204 No Content` response code. It does not return anything in the response body.
+
+## Examples
+
+### Request
+
+<!-- {
+ "blockType": "request",
+ "name": "delete_group"
+}
+-->
+
+``` http
+DELETE https://graph.microsoft.com/beta/policies/mobileDeviceManagementPolicies/ab90bacf-55a3-4a3e-839a-aa4b74e4f020/includedGroups/dc3d2ce5-7c5e-4dca-a0ef-2145bf6e53ef/$ref
+```
+
+### Response
+
+<!-- {
+ "blockType": "response",
+ "truncated": true
+}
+-->
+
+``` http
+HTTP/1.1 204 No Content
+```
v1.0 Mobiledevicemanagementpolicies Get https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/mobiledevicemanagementpolicies-get.md
+
+ Title: "Get mobileDeviceManagementPolicy"
+description: "Read the properties and relationships of a mobile device management policy object."
+
+localization_priority: Normal
++
+# Get mobileDeviceManagementPolicy
+
+Namespace: microsoft.graph
++
+Read the properties and relationships of a [mobilityManagementPolicy](../resources/mobilitymanagementpolicy.md) object.
+
+## Permissions
+
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
+
+|Permission type|Permissions (from least to most privileged)|
+|:|:|
+|Delegated (work or school account)|Policy.Read.All, Policy.ReadWrite.All|
+|Delegated (personal Microsoft account) | Not supported.|
+|Application | Not supported.|
+
+## HTTP request
+
+<!-- {
+ "blockType": "ignored"
+}
+-->
+
+``` http
+GET /policies/mobileDeviceManagementPolicies/{id}
+```
+
+## Request headers
+
+|Name|Description|
+|:|:|
+|Authorization|Bearer {token}. Required.|
+
+## Request body
+
+Do not supply a request body for this method.
+
+## Response
+
+If successful, this method returns a `200 OK` response code and a [mobilityManagementPolicy](../resources/mobilitymanagementpolicy.md) object in the response body.
+
+## Examples
+
+### Request
+
+<!-- {
+ "blockType": "request",
+ "name": "get_mobilitymanagementpolicy"
+}
+-->
+
+``` http
+GET https://graph.microsoft.com/beta/policies/mobileDeviceManagementPolicies/ab90bacf-55a3-4a3e-839a-aa4b74e4f020
+```
+
+### Response
+
+>**Note:** The response object shown here might be shortened for readability.
+<!-- {
+ "blockType": "response",
+ "truncated": true,
+ "@odata.type": "microsoft.graph.mobilityManagementPolicy"
+}
+-->
+
+``` http
+HTTP/1.1 200 OK
+Content-Type: application/json
+
+{
+ "value": {
+ "id": "ab90bacf-55a3-4a3e-839a-aa4b74e4f020",
+ "appliesTo": "selected",
+ "complianceUrl": "https://portal.mdm.contoso.com/?portalAction=Compliance",
+ "description": "Contoso mobilty app is a cloud-based Endpoint Management solution for managing Windows.",
+ "discoveryUrl": "https://enrollment.mdm.contoso.com/enrollmentserver/discovery.svc",
+ "displayName": "Contoso mobilty app",
+ "termsOfUseUrl": "https://portal.mdm.contoso.com/TermsofUse.aspx",
+ "includedGroups": [
+ {
+ "id": "dc3d2ce5-7c5e-4dca-a0ef-2145bf6e53ef",
+ "displayName": "Test MDM Group"
+ }
+ ]
+ }
+}
+```
v1.0 Mobiledevicemanagementpolicies List Includedgroups https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/mobiledevicemanagementpolicies-list-includedgroups.md
+
+ Title: "List includedGroups"
+description: "Get the list of groups that are included in a mobile device management policy."
+
+localization_priority: Normal
++
+# List includedGroups
+
+Namespace: microsoft.graph
++
+Get the list of groups that are included in a mobile device management policy.
+
+## Permissions
+
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
+
+|Permission type|Permissions (from least to most privileged)|
+|:|:|
+|Delegated (work or school account)|Policy.Read.All, Policy.ReadWrite.All|
+|Delegated (personal Microsoft account) | Not supported.|
+|Application | Not supported.|
+
+## HTTP request
+
+<!-- {
+ "blockType": "ignored"
+}
+-->
+
+``` http
+GET /policies/mobileDeviceManagementPolicies/{id}/includedGroups
+```
+
+## Request headers
+
+|Name|Description|
+|:|:|
+|Authorization|Bearer {token}. Required.|
+
+## Request body
+
+Do not supply a request body for this method.
+
+## Response
+
+If successful, this method returns a `200 OK` response code and a collection of [group](../resources/group.md) objects in the response body.
+
+## Examples
+
+### Request
+
+<!-- {
+ "blockType": "request",
+ "name": "list_group"
+}
+-->
+
+``` http
+GET https://graph.microsoft.com/beta/policies/mobileDeviceManagementPolicies/ab90bacf-55a3-4a3e-839a-aa4b74e4f020/includedGroups
+```
+
+### Response
+
+>**Note:** The response object shown here might be shortened for readability.
+<!-- {
+ "blockType": "response",
+ "truncated": true,
+ "@odata.type": "Collection(microsoft.graph.group)"
+}
+-->
+
+``` http
+HTTP/1.1 200 OK
+Content-Type: application/json
+
+{
+ "value": [
+ {
+ "id": "dc3d2ce5-7c5e-4dca-a0ef-2145bf6e53ef",
+ "displayName": "Test MDM Group"
+ }
+ ]
+}
+```
v1.0 Mobiledevicemanagementpolicies List https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/mobiledevicemanagementpolicies-list.md
+
+ Title: "List mobileDeviceManagementPolicies"
+description: "Get a list of the mobile device management objects and their properties."
+
+localization_priority: Normal
++
+# List mobileDeviceManagementPolicies
+
+Namespace: microsoft.graph
++
+Get a list of the [mobilityManagementPolicy](../resources/mobilitymanagementpolicy.md) objects and their properties.
+
+## Permissions
+
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
+
+|Permission type|Permissions (from least to most privileged)|
+|:|:|
+|Delegated (work or school account)|Policy.Read.All, Policy.ReadWrite.All|
+|Delegated (personal Microsoft account) | Not supported.|
+|Application | Not supported.|
+
+## HTTP request
+
+<!-- {
+ "blockType": "ignored"
+}
+-->
+
+``` http
+GET /policies/mobileDeviceManagementPolicies
+```
+
+## Optional query parameters
+
+This method supports some of the OData query parameters to help customize the response. For example:
+
+- To select specific attributes add `$select=id,displayname`.
+- To retrieve included groups for each policy, add `$expand=includedGroups`.
+- To filter based on an attribute, use `$filter=displayName eq 'Microsoft Intune'`.
+
+For general information, see [OData query parameters](/graph/query-parameters).
+
+## Request headers
+
+|Name|Description|
+|:|:|
+|Authorization|Bearer {token}. Required.|
+
+## Request body
+
+Do not supply a request body for this method.
+
+## Response
+
+If successful, this method returns a `200 OK` response code and a collection of [mobilityManagementPolicy](../resources/mobilitymanagementpolicy.md) objects in the response body.
+
+## Examples
+
+### Request
+
+<!-- {
+ "blockType": "request",
+ "name": "list_mobilitymanagementpolicy"
+}
+-->
+
+``` http
+GET https://graph.microsoft.com/beta/policies/mobileDeviceManagementPolicies
+```
+
+### Response
+
+>**Note:** The response object shown here might be shortened for readability.
+<!-- {
+ "blockType": "response",
+ "truncated": true,
+ "@odata.type": "microsoft.graph.mobilityManagementPolicy"
+}
+-->
+
+``` http
+HTTP/1.1 200 OK
+Content-Type: application/json
+
+{
+ "value": [
+ {
+ "@odata.type": "#microsoft.graph.mobilityManagementPolicy",
+ "id": "ab90bacf-55a3-4a3e-839a-aa4b74e4f020",
+ "appliesTo": "selected",
+ "complianceUrl": "https://portal.mdm.contoso.com/?portalAction=Compliance",
+ "description": "Contoso mobilty app is a cloud-based Endpoint Management solution for managing Windows.",
+ "discoveryUrl": "https://enrollment.mdm.contoso.com/enrollmentserver/discovery.svc",
+ "displayName": "Contoso mobilty app",
+ "termsOfUseUrl": "https://portal.mdm.contoso.com/TermsofUse.aspx",
+ "includedGroups": [
+ {
+ "id": "dc3d2ce5-7c5e-4dca-a0ef-2145bf6e53ef",
+ "displayName": "Test MDM Group"
+ }
+ ]
+ }
+ ]
+}
+```
+
+<!-- uuid: 5c98f801-d1c4-44eb-ac11-f72b6754deda
+2020-03-23T22:34:45.203Z -->
+<!-- {
+ "type": "#page.annotation",
+ "description": "List mobileDeviceManagementPolicies",
+ "keywords": "",
+ "section": "documentation",
+ "tocPath": ""
+}-->
v1.0 Mobiledevicemanagementpolicies Post Includedgroups https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/mobiledevicemanagementpolicies-post-includedgroups.md
+
+ Title: "Add includedGroups"
+description: "Add groups to be included in a mobile app management policy."
+
+localization_priority: Normal
++
+# Add includedGroups
+
+Namespace: microsoft.graph
++
+Add groups to be included in a mobile app management policy.
+
+## Permissions
+
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
+
+|Permission type|Permissions (from least to most privileged)|
+|:|:|
+|Delegated (work or school account)|Policy.Read.All, Policy.ReadWrite.All|
+|Delegated (personal Microsoft account) | Not supported.|
+|Application | Not supported.|
+
+## HTTP request
+
+<!-- {
+ "blockType": "ignored"
+}
+-->
+
+```http
+POST /policies/mobileDeviceManagementPolicies/{id}/includedGroups/$ref
+```
+
+## Request headers
+|Name|Description|
+|:|:|
+|Authorization|Bearer {token}. Required.|
+|Content-Type|application/json. Required.|
+
+## Request body
+In the request body, supply a JSON representation of the [group](../resources/group.md) object.
+
+The following table shows the properties that are required when you add the [group](../resources/group.md).
+
+|Property|Type|Description|
+|:|:|:|
+|id|String|The unique identifier for the group.|
+
+## Response
+
+If successful, this method returns a `204 No Content` response code and a [group](../resources/group.md) object in the response body.
+
+## Examples
+
+### Request
+
+<!-- {
+ "blockType": "request",
+ "name": "create_group_from_groups"
+}
+-->
+
+``` http
+POST https://graph.microsoft.com/beta/policies/mobileDeviceManagementPolicies/dc3d2ce5-7c5e-4dca-a0ef-2145bf6e53ef/includedGroups/$ref
+Content-Type: application/json
+
+{
+ "@odata.id": "https://graph.microsoft.com/odata/groups('dc3d2ce5-7c5e-4dca-a0ef-2145bf6e53ef')"
+}
+```
+
+### Response
+
+<!-- {
+ "blockType": "response",
+ "truncated": true
+}
+-->
+
+``` http
+HTTP/1.1 204 No Content
+```
v1.0 Mobiledevicemanagementpolicies Update https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/mobiledevicemanagementpolicies-update.md
+
+ Title: "Update mobileDeviceManagementPolicy"
+description: "Update the properties of a mobile device management object."
+
+localization_priority: Normal
++
+# Update mobileDeviceManagementPolicy
+
+Namespace: microsoft.graph
++
+Update the properties of a [mobilityManagementPolicy](../resources/mobilitymanagementpolicy.md) object.
+
+## Permissions
+
+One of the following permissions is required to call this API. To learn more, including how to choose permissions, see [Permissions](/graph/permissions-reference).
+
+|Permission type|Permissions (from least to most privileged)|
+|:|:|
+|Delegated (work or school account)|Policy.Read.All, Policy.ReadWrite.All|
+|Delegated (personal Microsoft account) | Not supported.|
+|Application | Not supported.|
+
+## HTTP request
+
+<!-- {
+ "blockType": "ignored"
+}
+-->
+
+``` http
+PATCH /policies/mobileDeviceManagementPolicies/{id}
+```
+
+## Request headers
+
+|Name|Description|
+|:|:|
+|Authorization|Bearer {token}. Required.|
+|Content-Type|application/json. Required.|
+
+## Request body
+
+In the request body, supply a JSON representation of the [mobilityManagementPolicy](../resources/mobilitymanagementpolicy.md) object.
+
+In the request body, supply the values for fields listed below that should be updated. **Note:** You cannot use `PATCH` operation for `appliesTo` with the other properties.
+
+|Property|Type|Description|
+|:|:|:|
+|appliesTo|policyScope|Determines the groups this policy setting applies to. Possible values are: `none`, `all`, `selected` **Important:** `selected` cannot be used when specifying this property. Use [includedGroups](../api/mobiledevicemanagementpolicies-post-includedgroups.md) to add specific groups. Using `all` will remove any existing groups.|
+|complianceUrl|String|Compliance URL of the mobility management application|
+|discoveryUrl|String|Discovery URL of the mobility management application|
+|termsOfUseUrl|String|Terms of Use URL of the mobility management application|
+
+## Response
+
+If successful, this method returns a `200 OK` response code and an updated [mobilityManagementPolicy](../resources/mobilitymanagementpolicy.md) object in the response body.
+
+## Examples
+
+### Request
+
+<!-- {
+ "blockType": "request",
+ "name": "update_mobilitymanagementpolicy"
+}
+-->
+
+``` http
+PATCH https://graph.microsoft.com/beta/policies/mobileDeviceManagementPolicies/ab90bacf-55a3-4a3e-839a-aa4b74e4f020
+Content-Type: application/json
+
+{
+ "@odata.type": "#microsoft.graph.mobilityManagementPolicy",
+ "complianceUrl": "https://portal.uem.contoso.com/?portalAction=Compliance",
+ "discoveryUrl": "https://enrollment.uem.contoso.com/enrollmentserver/discovery.svc",
+ "termsOfUseUrl": "https://portal.uem.contoso.com/TermsofUse.aspx"
+}
+```
+
+### Response
+
+<!-- {
+ "blockType": "response",
+ "truncated": true
+}
+-->
+
+``` http
+HTTP/1.1 204 No Content
+```
v1.0 Onpremisespublishingprofile Update https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/onpremisespublishingprofile-update.md
The following example updates **deferUpdate** in the **hybridAgentUpdaterConfigu
The following is an example of the request.
-# [HTTP](#tab/http)
<!-- { "blockType": "request", "name": "update_onpremisespublishingprofile_2"
Content-Type: application/json
"deferUpdate" : "2018-08-20T12:00" } ```
-# [JavaScript](#tab/javascript)
-
-# [Objective-C](#tab/objc)
--- #### Response
v1.0 Userflowlanguageconfiguration Delete https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/userflowlanguageconfiguration-delete.md
doc_type: apiPageType
Namespace: microsoft.graph + Deletes a [userFlowLanguageConfiguration](../resources/userflowlanguageconfiguration.md) object from a [Azure AD B2C user flow](../resources/b2cidentityuserflow.md). **Note:** You cannot delete languages from an [Azure Active Directory user flow](../resources/b2xidentityuserflow.md).
v1.0 Userflowlanguageconfiguration List Defaultpages https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/api/userflowlanguageconfiguration-list-defaultpages.md
doc_type: apiPageType
Namespace: microsoft.graph + Get the userFlowLanguagePage resources from the defaultPages navigation property. These contain the values shown to the user in a default user journey of a user flow. ## Permissions
v1.0 Agreementfiledata https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/agreementfiledata.md
Title: "agreementFileData resource type"
description: "Represents the blob of an Azure Active Directory (Azure AD) terms of use agreement file." localization_priority: Normal doc_type: resourcePageType
v1.0 Alternativesecurityid https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/alternativeSecurityId.md
Title: "alternativeSecurityId resource type"
description: "For internal use only. This complex type will be deprecated in the future." localization_priority: Normal doc_type: resourcePageType
v1.0 Anonymousipriskevent https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/anonymousipriskevent.md
Title: "anonymousIpRiskEvent resource type"
description: "A risk event detected by Azure Active Directory Identity Protection where an account sign-in is attempted from an IP address that appears to be anonymous. Complete information about risk events can be found in the Azure AD Identity Protection documentation." localization_priority: Normal doc_type: resourcePageType
v1.0 Assignedlicense https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/assignedlicense.md
Title: "assignedLicense resource type"
description: "Represents a license assigned to a user. The **assignedLicenses** property of the user entity is a collection of **assignedLicense**." localization_priority: Normal doc_type: resourcePageType
v1.0 Authenticationcontextclassreference https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/authenticationcontextclassreference.md
+
+ Title: "authenticationContextClassReference resource type"
+description: "Represents an Azure Active Directory authentication context class reference."
+localization_priority: Normal
+++
+# authenticationContextClassReference resource type
+
+Namespace: microsoft.graph
++
+Represents an Azure Active Directory authentication context class reference. Authentication context class references are custom values that define a Conditional Access authentication requirement.
+
+## Methods
+
+| Method | Return Type | Description |
+|:-|:|:|
+| [List authenticationContextClassReference](../api/conditionalaccessroot-list-authenticationcontextclassreferences.md) | [authenticationContextClassReference](authenticationContextClassReference.md) collection | Get all of the authenticationContextClassReference objects in the organization. |
+| [Create authenticationContextClassReference](../api/conditionalaccessroot-post-authenticationcontextclassreferences.md) | [authenticationContextClassReference](authenticationContextClassReference.md) | Create a new authenticationContextClassReference object. |
+| [Get authenticationContextClassReference](../api/authenticationcontextclassreference-get.md) | [authenticationContextClassReference](authenticationContextClassReference.md) | Read properties and relationships of a authenticationContextClassReference object. |
+| [Update authenticationContextClassReference](../api/authenticationcontextclassreference-update.md) | [authenticationContextClassReference](authenticationContextClassReference.md) | Update a authenticationContextClassReference object. |
++
+## Properties
+
+| Property | Type | Description |
+|:-|:|:|
+|id|String| Identifier used to reference the authentication context class. The id is used to trigger step-up authentication for the referenced authentication requirements and is the value that will be issued in the acrs claim. This value in the claim is used to verify the required authentication context has been satisfied. The allowed id values are "c1" through "c25". |
+|displayName|String| The display name is the friendly name of the authenticationContextClassReference. This value should be used to identify the authentication context class reference when building user facing admin experiences. For example, selection UX. |
+|description|String| A short explanation of the policies that are enforced by authenticationContextClassReference. This value should be used to provide secondary text to describe the authentication context class reference when building user facing admin experiences. For example, selection UX.|
+|isAvailable|boolean| Indicates whether the authenticationContextClassReference has been published by the security admin and is ready for use by apps. When it is set to `false` it should not be shown in admin UX experiences because the value is not currently available for selection.|
+
+## Relationships
+
+None.
+
+## JSON representation
+
+The following is a JSON representation of the resource.
+
+<!-- {
+ "blockType": "resource",
+ "optionalProperties": [
+ "displayName",
+ "description",
+ "sessionControls",
+ "grantControls"
+ ],
+ "@odata.type": "microsoft.graph.authenticationContextClassReference",
+ "baseType": "microsoft.graph.entity",
+ "keyProperty": "id"
+}-->
+
+```json
+ {
+ "id": "String",
+ "displayName": "String",
+ "description": "String",
+ "isAvailable": "boolean",
+ }
+
+```
+
+<!-- uuid: 16cd6b66-4b1a-43a1-adaf-3a886856ed98
+2019-02-04 14:57:30 UTC -->
+<!-- {
+ "type": "#page.annotation",
+ "description": "authenticationContextClassReference resource",
+ "keywords": "",
+ "section": "documentation",
+ "tocPath": ""
+}-->
v1.0 Command https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/command.md
Title: "command resource type"
-description: ""
+description: "Set of commands sent to a device."
localization_priority: Normal doc_type: resourcePageType-+ # command resource type
Namespace: microsoft.graph ## Properties
-|Property|Type|Description|
-|:|:|:|
+None
## Relationships None
v1.0 Conditionalaccessapplications https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/conditionalaccessapplications.md
Represents the applications and user actions included in and excluded from the p
| includeApplications | String collection | The list of application IDs the policy applies to, unless explicitly excluded (in excludeApplications). Can also be set to `All`. | | excludeApplications | String collection | The list of application IDs explicitly excluded from the policy. | | includeUserActions | String collection | User actions to include. Supported values are `urn:user:registersecurityinfo` and `urn:user:registerdevice` |
+| includeAuthenticationContextClassReferences | String collection | Authentication context class references include. Supported values are `c1` through `c25`. |
## Relationships
v1.0 Conditionalaccesspolicy https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/conditionalaccesspolicy.md
The following is a JSON representation of the resource.
"grantControls" ], "@odata.type": "microsoft.graph.conditionalAccessPolicy",
+ "baseType":"microsoft.graph.entity",
"keyProperty": "id" }-->
v1.0 Conditionalaccessroot https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/conditionalaccessroot.md
+
+ Title: "conditionalAccess resource type"
+description: "The **conditionalaccess** resource is the entry point for the Conditinal Access object model. It doesn't contain any usable properties."
+localization_priority: Normal
+++
+# conditionalaccess resource type
+
+Namespace: microsoft.graph
++
+The **conditionalAccess** resource is the entry point for the Conditional Access object model. It doesn't contain any usable properties.
++
+## Methods
+
+| Method | Return Type |Description|
+|:|:--|:-|
+|[Create conditionalAccessPolicy](../api/conditionalaccessroot-post-policies.md) |[conditionalAccessPolicy](conditionalaccesspolicy.md)| Create a new **conditionalAccessPolicy** by posting to the conditionalAccessPolicy collection.|
+|[Create namedLocations](../api/conditionalaccessroot-post-namedlocations.md) |[namedLocation](namedlocation.md)| Create a new **namedLocations** by posting to the namedLocations collection.|
+|[Create authenticationContextClassReferences](../api/conditionalaccessroot-post-authenticationcontextclassreferences.md)|[authenticationContextClassReferences](authenticationcontextclassreference.md)|Create a new **authenticationContextClassReferences** by posting to authenticationContextClassReferences collection.|
++
+## Properties
+
+The conditionalAccess resource is the entry point for the Conditional Access object model and doesn't contain any properties.
+
+## Relationships
+| Relationship | Type |Description|
+|:|:--|:-|
+|conditionalAccessPolicy|[conditionalAccessPolicy](conditionalaccesspolicy.md) collection| Read-only. Nullable. Returns a collection of the specified Conditional Access policies.|
+|namedLocations|[namedLocations](namedlocation.md) collection| Read-only. Nullable. Returns a collection of the specified named locations.|
+|authenticationContextClassReferences|[authenticationContextClassReferences](authenticationcontextclassreference.md) collection|Read-only. Nullable. Returns a collection of the specified authentication context class references.|
+
+<!-- uuid: 8fcb5dbc-d5aa-4681-8e31-b001d5168d79
+2015-10-25 14:57:30 UTC -->
+<!--
+{
+ "type": "#page.annotation",
+ "description": "conditional access resource",
+ "keywords": "",
+ "section": "documentation",
+ "tocPath": "",
+ "suppressions": []
+}
+-->
+
v1.0 Directory https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/directory.md
- Title: "directory resource type (deleted items)" description: ". Deleted items will remain available to restore for up to 30 days. After 30 days, the items are permanently deleted."
v1.0 Entity https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/entity.md
Title: "entity resource type"
-description: ""
+description: "Represents an entity."
localization_priority: Normal doc_type: resourcePageType-+ # entity resource type
v1.0 Enums https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/enums.md
Possible values for user account types (group membership), per Windows definitio
|other| |unknownFutureValue|
+### policyScope values
+
+|Member|
+|:|
+|none|
+|all|
+|selected|
+ ### teamsAppInstallationScope values |Member |Value |Description |
Possible values for user account types (group membership), per Windows definitio
|:| |principal| |unknownFutureValue|-
v1.0 Implicitgrantsettings https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/implicitgrantsettings.md
Title: "implicitGrantSettings resource type"
-description: "Specifies whether this web application can request tokens using the OAuth 2.0 implicit flow. Separate properties are available to request ID and access tokens as part of the implicit flow. To enable implicit flow, at least one of the following properties must be set to true."
+description: "Specifies whether this web application can request tokens using the OAuth 2.0 implicit flow. "
localization_priority: Normal doc_type: resourcePageType
v1.0 Impossibletravelriskevent https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/impossibletravelriskevent.md
Title: "impossibleTravelRiskEvent resource type"
description: "A risk event detected by Azure Active Directory Identity Protection where two account sign-ins occur from locations atypical for the user and it would be impossible to travel between the locations in the duration between the sign-ins. Complete information about risk events can be found in the Azure AD Identity Protection documentation." localization_priority: Normal doc_type: resourcePageType
v1.0 Invokeuserflowlistener https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/invokeuserflowlistener.md
Namespace: microsoft.graph
[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)]
-You can create an [invokeUserFlowListener](../resources/invokeuserflowlistener.md) for the onSignUpStart event. This associates an application with a user flow, which enables [external identities self-service sign up](https://docs.microsoft.com/azure/active-directory/external-identities/self-service-sign-up-overview) for the application. Once an application is associated with a user flow, users who go to that application will be able to initiate a sign-up flow that provisions a guest account.
+You can create an [invokeUserFlowListener](../resources/invokeuserflowlistener.md) for the onSignUpStart event. This associates an application with a user flow, which enables [external identities self-service sign up](/azure/active-directory/external-identities/self-service-sign-up-overview) for the application. Once an application is associated with a user flow, users who go to that application will be able to initiate a sign-up flow that provisions a guest account.
Inherits from the abstract base type [authenticationListener](../resources/authenticationlistener.md).
v1.0 Leakedcredentialsriskevent https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/leakedcredentialsriskevent.md
Title: "leakedCredentialsRiskEvent resource type"
description: "A risk event detected by Azure Active Directory Identity Protection where an account's credentials have been detected in the wild. Complete information about risk events can be found in the Azure AD Identity Protection documentation." localization_priority: Normal doc_type: resourcePageType
v1.0 Licenseassignmentstate https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/licenseAssignmentState.md
Title: "licenseAssignmentState resource type"
description: "The **licenseAssignmentStates** property of the user entity is a collection of **licenseAssignmentState**. It provides details about license assignments to a user. The details includes information like: " localization_priority: Normal doc_type: resourcePageType
v1.0 Licensedetails https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/licensedetails.md
Title: "licenseDetails resource type"
description: "Contains information about a license assigned to a user." localization_priority: Normal doc_type: resourcePageType
v1.0 Malwareriskevent https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/malwareriskevent.md
Title: "malwareRiskEvent resource type"
description: "A risk event detected by Azure Active Directory Identity Protection where an account sign-in is attempted from a device infected with malware. Complete information about risk events can be found in the Azure AD Identity Protection documentation." localization_priority: Normal doc_type: resourcePageType-+ # malwareRiskEvent resource type (deprecated)
v1.0 Mobilitymanagementpolicy https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/mobilitymanagementpolicy.md
+
+ Title: "mobilityManagementPolicy resource type"
+description: "A mobility management policy represents an auto-enrollment policy for a mobility management application configured in Azure AD."
+
+localization_priority: Normal
++
+# mobilityManagementPolicy resource type
+
+Namespace: microsoft.graph
++
+In Azure AD, a mobility management policy represents an auto-enrollment configuration for a mobility management (MDM or MAM) application. These policies are only applicable to devices based on Windows 10 OS and its derivatives (Surface Hub, Hololens etc.). [Auto-enrollment](https://docs.microsoft.com/windows/client-management/mdm/azure-ad-and-microsoft-intune-automatic-mdm-enrollment-in-the-new-portal) enables organizations to automatically enroll devices into their chosen mobility management application as part of [Azure AD join](https://docs.microsoft.com/azure/active-directory/devices/concept-azure-ad-join) or [Azure AD register](https://docs.microsoft.com/azure/active-directory/devices/concept-azure-ad-register) process on Windows 10 devices.
+
+## Methods
+
+|Method|Return type|Description|
+|:|:|:|
+|[List mobileDeviceManagementPolicies](../api/mobiledevicemanagementpolicies-list.md)|[mobilityManagementPolicy](../resources/mobilitymanagementpolicy.md) collection|Get a list of the [mobilityManagementPolicy](../resources/mobilitymanagementpolicy.md) objects and their properties for mobile device management applications.|
+|[Get mobileDeviceManagementPolicy](../api/mobiledevicemanagementpolicies-get.md)|[mobilityManagementPolicy](../resources/mobilitymanagementpolicy.md)|Read the properties and relationships of a [mobilityManagementPolicy](../resources/mobilitymanagementpolicy.md) object for a mobile device management application.|
+|[Update mobileDeviceManagementPolicy](../api/mobiledevicemanagementpolicies-update.md)|None|Update the properties of a [mobilityManagementPolicy](../resources/mobilitymanagementpolicy.md) object for a mobile device management application.|
+|[List includedGroups of mobileDeviceManagementPolicy](../api/mobiledevicemanagementpolicies-list-includedgroups.md)|[group](../resources/group.md) collection|List included groups for a [mobilityManagementPolicy](../resources/mobilitymanagementpolicy.md) object for a mobile device management application.|
+|[Add group to mobileDeviceManagementPolicy](../api/mobiledevicemanagementpolicies-post-includedgroups.md)|None|Add a group to the [mobilityManagementPolicy](../resources/mobilitymanagementpolicy.md) object for a mobile device management application.|
+|[Delete group from mobileDeviceManagementPolicy](../api/mobiledevicemanagementpolicies-delete-includedgroups.md)|None|Delete a group from the [mobilityManagementPolicy](../resources/mobilitymanagementpolicy.md) object for a mobile device management application.|
+|[List mobileAppManagementPolicies](../api/mobileappmanagementpolicies-list.md)|[mobilityManagementPolicy](../resources/mobilitymanagementpolicy.md) collection|Get a list of the [mobilityManagementPolicy](../resources/mobilitymanagementpolicy.md) objects and their properties for mobile app management applications.|
+|[Get mobileAppManagementPolicy](../api/mobileappmanagementpolicies-get.md)|[mobilityManagementPolicy](../resources/mobilitymanagementpolicy.md)|Read the properties and relationships of a [mobilityManagementPolicy](../resources/mobilitymanagementpolicy.md) object for a mobile app management application.|
+|[Update mobileAppManagementPolicy](../api/mobileappmanagementpolicies-update.md)|None|Update the properties of a [mobilityManagementPolicy](../resources/mobilitymanagementpolicy.md) object for a mobile app management application.|
+|[List includedGroups of mobileAppManagementPolicy](../api/mobileappmanagementpolicies-list-includedgroups.md)|[group](../resources/group.md) collection|List included groups for a [mobilityManagementPolicy](../resources/mobilitymanagementpolicy.md) object for a mobile app management application.|
+|[Add group to mobileAppManagementPolicy](../api/mobileappmanagementpolicies-post-includedgroups.md)|None|Add a group to the [mobilityManagementPolicy](../resources/mobilitymanagementpolicy.md) object for a mobile app management application.
+|[Delete group from mobileAppManagementPolicy](../api/mobileappmanagementpolicies-delete-includedgroups.md)|None|Delete a group from the [mobilityManagementPolicy](../resources/mobilitymanagementpolicy.md) object for a mobile app management application.|
+
+## Properties
+
+|Property|Type|Description|
+|:|:|:|
+|appliesTo|policyScope|Indicates the user scope of the mobility management policy. Possible values are: `none`, `all`, `selected`.|
+|complianceUrl|String|Compliance URL of the mobility management application.|
+|description|String|Description of the mobility management application.|
+|discoveryUrl|String|Discovery URL of the mobility management application.|
+|displayName|String|Display name of the mobility management application.|
+|id|String|Object Id of the mobility management application.|
+|termsOfUseUrl|String|Terms of Use URL of the mobility management application.|
+
+## Relationships
+
+|Relationship|Type|Description|
+|:|:|:|
+|includedGroups|[group](../resources/group.md) collection|Azure AD groups under the scope of the mobility management application if appliesTo is `selected`|
+
+## JSON representation
+
+The following is a JSON representation of the resource.
+<!-- {
+ "blockType": "resource",
+ "keyProperty": "id",
+ "@odata.type": "microsoft.graph.mobilityManagementPolicy",
+ "openType": false
+}
+-->
+
+``` json
+{
+ "id": "String (identifier)",
+ "appliesTo": "String",
+ "complianceUrl": "String",
+ "description": "String",
+ "discoveryUrl": "String",
+ "displayName": "String",
+ "termsOfUseUrl": "String"
+}
+```
+
+<!-- uuid: 5c98f801-d1c4-44eb-ac11-f72b6754deda
+2020-03-23T22:34:45.203Z -->
+<!-- {
+ "type": "#page.annotation",
+ "description": "mobilityManagementPolicy resource",
+ "keywords": "",
+ "section": "documentation",
+ "tocPath": ""
+}
+-->
v1.0 Oauth2permissiongrant https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/oauth2permissiongrant.md
Delegated permissions are sometimes referred to as "OAuth 2.0 scopes" or "scopes
| [Create oAuth2PermissionGrant](../api/oauth2permissiongrant-post.md) | [oAuth2PermissionGrant](oauth2permissiongrant.md) | Create a delegated permission grant. | | [Update oAuth2PermissionGrant](../api/oauth2permissiongrant-update.md) | None | Update oAuth2PermissionGrant object. | | [Delete oAuth2PermissionGrant](../api/oauth2permissiongrant-delete.md) | None | Delete a delegated permission grant. |
+| [Delta](../api/oauth2permissiongrant-delta.md) | [oAuth2PermissionGrant](oauth2permissiongrant.md) collection |Get newly created, updated, or deleted **oauth2permissiongrant** objects without performing a full read of the entire resource collection. |
## Properties
Delegated permissions are sometimes referred to as "OAuth 2.0 scopes" or "scopes
|:|:--|:-| | id | String | Unique identifier for the **oAuth2PermissionGrant**. Read-only.| | clientId | String | The **id** of the client [service principal](serviceprincipal.md) for the application which is authorized to act on behalf of a signed-in user when accessing an API. Required. Supports `$filter` (`eq` only). |
-| consentType | String | Indicates if authorization is granted for the client application to impersonate all users or only a specific user. *AllPrincipals* indicates authorization to impersonate all users. *Principal* indicates authorization to impersonate a specific user. Consent on behalf of all users can be granted by an administrator. Non-admin users may be authorized to consent on behalf of themselves in some cases, for some delegated permissions. Required. Supports `$filter` (`eq` only). |
+| consentType | String | Indicates whether authorization is granted for the client application to impersonate all users or only a specific user. *AllPrincipals* indicates authorization to impersonate all users. *Principal* indicates authorization to impersonate a specific user. Consent on behalf of all users can be granted by an administrator. Non-admin users may be authorized to consent on behalf of themselves in some cases, for some delegated permissions. Required. Supports `$filter` (`eq` only). |
| principalId | String | The **id** of the [user](user.md) on behalf of whom the client is authorized to access the resource, when **consentType** is *Principal*. If **consentType** is *AllPrincipals* this value is null. Required when **consentType** is *Principal*. | | resourceId | String | The **id** of the resource [service principal](serviceprincipal.md) to which access is authorized. This identifies the API which the client is authorized to attempt to call on behalf of a signed-in user. | | scope | String | A space-separated list of the claim values for delegated permissions which should be included in access tokens for the resource application (the API). For example, `openid User.Read GroupMember.Read.All`. Each claim value should match the **value** field of one of the delegated permissions defined by the API, listed in the **publishedPermissionScopes** property of the resource [service principal](serviceprincipal.md). | | startTime | DateTimeOffset | Currently, the start time value is ignored, but a value is required when creating an **oAuth2PermissionGrant**. Required. | | expiryTime | DateTimeOffset | Currently, the end time value is ignored, but a value is required when creating an **oAuth2PermissionGrant**. Required. |
-## Relationships
-
-None.
-
-This resource supports using [delta query](/graph/delta-query-overview) to track incremental additions, deletions, and updates, by providing a [delta](../api/oauth2permissiongrant-delta.md) function.
-
-## Methods
-
-| Method | Return Type |Description|
-|:|:--|:-|
-|[List oAuth2PermissionGrants](../api/oauth2permissiongrant-list.md) | [oAuth2PermissionGrant](oauth2permissiongrant.md) collection | Retrieve a list of **oauth2PermissionGrant** objects. |
-|[Get oAuth2PermissionGrant](../api/oauth2permissiongrant-get.md) | [oAuth2PermissionGrant](oauth2permissiongrant.md) |Read the properties and relationships of an **oAuth2PermissionGrant** object.|
-|[Update oAuth2PermissionGrant](../api/oauth2permissiongrant-update.md) | [oAuth2PermissionGrant](oauth2permissiongrant.md) |Update an **oAuth2PermissionGrant** object. |
-|[Delete oAuth2PermissionGrant](../api/oauth2permissiongrant-delete.md) | None |Delete an **oAuth2PermissionGrant** object. |
-|[Get delta](../api/oauth2permissiongrant-delta.md)|[oAuth2PermissionGrant](oauth2permissiongrant.md)|Get newly created, updated, or deleted **oauth2permissiongrant** objects without performing a full read of the entire resource collection.|
-
-## Properties
-| Property | Type |Description|
-|:|:--|:-|
-|clientId|String| The id of the service principal granted consent to impersonate the user when accessing the resource (represented by the resourceId property). |
-|consentType|String| Indicates if consent was provided by the administrator (on behalf of the organization) or by an individual. The possible values are *AllPrincipals* or *Principal*. |
-|expiryTime|DateTimeOffset| Currently, the expiry time value is ignored. |
-|id|String| Unique identifier. Read-only.|
-|principalId|String| If consentType is *AllPrincipals* this value is null, and the consent applies to all users in the organization. If consentType is *Principal*, then this property specifies the id of the user that granted consent and applies only for that user. |
-|resourceId|String| Specifies the id of the resource service principal to which access has been granted. |
-|scope|String| Specifies the value of the [scope](/graph/permissions-reference) claim that the resource application should expect in the OAuth 2.0 access token. For example, *User.Read* |
-|startTime|DateTimeOffset| Currently, the start time value is ignored. |
- ## Relationships None.
v1.0 Opentypeextension https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/opentypeextension.md
Apply the following guidelines when you create open extensions on Outlook resour
### Use open extensions (for Outlook resources) or extended properties
-Open extensions are the recommended solution for most scenarios involving storing and accessing custom data. If, however,
-you need to access custom data for Outlook MAPI properties that are not already exposed through the
-[Microsoft Graph API metadata](../index.md), you can use
-[extended properties and its REST API](extended-properties-overview.md). You can verify which properties the metadata
-exposes at [https://graph.microsoft.com/v1.0/$metadata](https://graph.microsoft.com/v1.0/$metadata).
+Open extensions are the recommended solution for most scenarios involving storing and accessing custom data. If, however, you need to access custom data for Outlook MAPI properties that are not already exposed through the [Microsoft Graph API metadata](/graph/traverse-the-graph#microsoft-graph-api-metadata), you can use [extended properties and its REST API](extended-properties-overview.md). You can verify which properties the metadata
+exposes at https://graph.microsoft.com/v1.0/$metadata.
## JSON representation
v1.0 Organizationalbrandingproperties https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/organizationalbrandingproperties.md
doc_type: "resourcePageType"
[!INCLUDE [beta-disclaimer](../../includes/beta-disclaimer.md)] >[!NOTE]
->Adding custom branding requires you to use Azure Active Directory Premium 1, Premium 2, or Basic editions, or to have a Microsoft 365 license. For more information about licensing and editions, see [Sign up for Azure AD Premium](https://docs.microsoft.com/azure/active-directory/fundamentals/active-directory-get-started-premium).<br><br>Azure AD Premium and Basic editions are available for customers in China using the worldwide instance of Azure Active Directory. Azure AD Premium and Basic editions aren't currently supported in the Azure service operated by 21Vianet in China. For more information, talk to us using the [Azure Active Directory Forum](https://feedback.azure.com/forums/169401-azure-active-directory/).
+>Adding custom branding requires you to use Azure Active Directory Premium 1, Premium 2, or Basic editions, or to have a Microsoft 365 license. For more information about licensing and editions, see [Sign up for Azure AD Premium](/azure/active-directory/fundamentals/active-directory-get-started-premium).<br><br>Azure AD Premium and Basic editions are available for customers in China using the worldwide instance of Azure Active Directory. Azure AD Premium and Basic editions aren't currently supported in the Azure service operated by 21Vianet in China. For more information, talk to us using the [Azure Active Directory Forum](https://feedback.azure.com/forums/169401-azure-active-directory/).
Contains details about the organization's branding.
v1.0 Privilegedidentitymanagement Root https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/privilegedidentitymanagement-root.md
Namespace: microsoft.graph
- [APIs for Azure resource roles](privilegedidentitymanagement-resources.md) > [!IMPORTANT]
-> The API to manage Azure AD roles is deprecated for most tenants except for a few that use an older version of Privileged Identity Management (PIM). For more information about PIM versions, see [Determine your version of PIM](https://docs.microsoft.com/azure/active-directory/privileged-identity-management/pim-how-to-activate-role?tabs=new#determine-your-version-of-pim). If you are using the new version and are recieving a **TenantEnabledInAadRoleMigration** error, you can wait until a new API is available for PIM functionality under the [unifiedRoleManagement](/graph/api/resources/unifiedroledefinition?view=graph-rest-beta) API for Azure AD roles, or you can use the [Azure Resource](/graph/api/resources/privilegedidentitymanagement-resources?view=graph-rest-beta) API for your Azure AD roles. To use the **Azure resource** API, replace `azureResources` with `aadRoles` for `provider_id` and use your tenant id for `resource_id`. We recommend that you wait for the new API. You will be able to continue using the **Azure resource** API after the new API is available. Any new features made available in the Azure portal will also be made exclusively available through the new API.
+> The API to manage Azure AD roles is deprecated for most tenants except for a few that use an older version of Privileged Identity Management (PIM). For more information about PIM versions, see [Determine your version of PIM](/azure/active-directory/privileged-identity-management/pim-how-to-activate-role?tabs=new#determine-your-version-of-pim). If you are using the new version and are recieving a **TenantEnabledInAadRoleMigration** error, you can wait until a new API is available for PIM functionality under the [unifiedRoleManagement](/graph/api/resources/unifiedroledefinition?view=graph-rest-beta&preserve-view=true) API for Azure AD roles, or you can use the [Azure Resource](/graph/api/resources/privilegedidentitymanagement-resources?view=graph-rest-beta&preserve-view=true) API for your Azure AD roles. To use the **Azure resource** API, replace `azureResources` with `aadRoles` for `provider_id` and use your tenant id for `resource_id`. We recommend that you wait for the new API. You will be able to continue using the **Azure resource** API after the new API is available. Any new features made available in the Azure portal will also be made exclusively available through the new API.
<!-- uuid: 8fcb5dbc-d5aa-4681-8e31-b001d5168d79 2015-10-25 14:57:30 UTC -->
v1.0 Provisioningerrorinfo https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/provisioningerrorinfo.md
Title: "provisioningErrorInfo resource type"
description: "Describes the status of the provisioning event and the associated errors." localization_priority: Normal doc_type: "resourcePageType"
Describes the status of the provisioning event and the associated errors.
|:-|:|:| |additionalDetails|String|Additional details in case of error.| |errorCategory|String|Categorizes the error code. Possible values are `failure`, `nonServiceFailure`, `success`, `unknownFutureValue`|
-|errorCode|String|Unique error code if any occurred. [Learn more](https://docs.microsoft.com/azure/active-directory/reports-monitoring/concept-provisioning-logs#error-codes)|
+|errorCode|String|Unique error code if any occurred. [Learn more](/azure/active-directory/reports-monitoring/concept-provisioning-logs#error-codes)|
|reason|String|Summarizes the status and describes why the status happened.| |recommendedAction|String|Provides the resolution for the corresponding error.|
v1.0 Serviceprincipal https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/serviceprincipal.md
This resource supports using [delta query](/graph/delta-query-overview) to track
|[Remove appRoleAssignedTo](../api/serviceprincipal-delete-approleassignedto.md) | None | Remove an app role assignment for this service principal from a user, group, or service principal.| |**Certificates and secrets**| | | |[Add password](../api/serviceprincipal-addpassword.md)|[passwordCredential](passwordcredential.md)|Add a strong password to a servicePrincipal.|
-|[Add tokenSigningCertificate](../api/serviceprincipal-addtokensigningcertificate.md)|[selfSignedCertificate](../resources/selfsignedcertificate.md)| Add a self signed certificate to the service principal. Mostly use for configuring SAML based SSO applications from the [Azure AD gallery](https://docs.microsoft.com/azure/active-directory/saas-apps/tutorial-list).
+|[Add tokenSigningCertificate](../api/serviceprincipal-addtokensigningcertificate.md)|[selfSignedCertificate](../resources/selfsignedcertificate.md)| Add a self signed certificate to the service principal. Mostly use for configuring SAML based SSO applications from the [Azure AD gallery](/azure/active-directory/saas-apps/tutorial-list).
|[Remove password](../api/serviceprincipal-removepassword.md)|[passwordCredential](passwordcredential.md)|Remove a password from a servicePrincipal.| |[Add key](../api/serviceprincipal-addkey.md)|[keyCredential](keycredential.md)|Add a key credential to a servicePrincipal.| |[Remove key](../api/serviceprincipal-removekey.md)|None|Remove a key credential from a servicePrincipal.|
v1.0 Statusdetails https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/statusdetails.md
Describes the status of the provisioning event and the associated errors. It is
|status|statusBase|Possible values are: `success`, `warning`, `failure`, `skipped`, `unknownFutureValue`. Inherited from statusBase.| |additionalDetails|String|Additional details in case of error.| |errorCategory|String|Categorizes the error code. Possible values are `Failure`, `NonServiceFailure`, `Success`.|
-|errorCode|String|Unique error code if any occurred. [Learn more](https://docs.microsoft.com/azure/active-directory/reports-monitoring/concept-provisioning-logs#error-codes)|
+|errorCode|String|Unique error code if any occurred. [Learn more](/azure/active-directory/reports-monitoring/concept-provisioning-logs#error-codes)|
|reason|String|Summarizes the status and describes why the status happened.| |recommendedAction|String|Provides the resolution for the corresponding error.|
v1.0 Subscription https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/subscription.md
A subscription allows a client app to receive change notifications about changes
- A [message][], [event][], or [contact][] in Outlook. - The [presence][] of a user in Microsoft Teams. - A [user][] or [group][] in Azure Active Directory.-- A [printer][] (when a print job for the printer gets to JobFetchable state - ready to be fetched for printing) and a [printTaskDefinition][] in Universal Print. For more information, see [Subscribe to change notifications from cloud printing APIs](https://docs.microsoft.com/en-us/graph/universal-print-webhook-notifications).
+- A [printer][] (when a print job for the printer gets to JobFetchable state - ready to be fetched for printing) and a [printTaskDefinition][] in Universal Print. For more information, see [Subscribe to change notifications from cloud printing APIs](/graph/universal-print-webhook-notifications).
- A [todoTask][] of a user in Microsoft To Do. See [Use the Microsoft Graph API to get change notifications](webhooks.md) for the possible resource path values for each supported resource.
See [Use the Microsoft Graph API to get change notifications](webhooks.md) for t
| encryptionCertificateId | string | A custom app-provided identifier to help identify the certificate needed to decrypt resource data. Optional. Required when **includeResourceData** is true. | All | | latestSupportedTlsVersion | string | Specifies the latest version of Transport Layer Security (TLS) that the notification endpoint, specified by **notificationUrl**, supports. The possible values are: `v1_0`, `v1_1`, `v1_2`, `v1_3`. </br></br>For subscribers whose notification endpoint supports a version lower than the currently recommended version (TLS 1.2), specifying this property by a set [timeline](https://developer.microsoft.com/graph/blogs/microsoft-graph-subscriptions-deprecating-tls-1-0-and-1-1/) allows them to temporarily use their deprecated version of TLS before completing their upgrade to TLS 1.2. For these subscribers, not setting this property per the timeline would result in subscription operations failing. </br></br>For subscribers whose notification endpoint already supports TLS 1.2, setting this property is optional. In such cases, Microsoft Graph defaults the property to `v1_2`. | All | | notificationContentType | string | Desired content-type for MS Graph change notifications for supported resource types. The default content-type is the "application/json" content-type. | All |
-| notificationQueryOptions | string | OData Query Options for specifying value for the targeting resource. Clients receive notifications when resource reaches the state matching the query options provided here. With this new property in the subscription creation payload along with all existing properties, Webhooks will deliver notifications whenever a resource reaches the desired state mentioned in the notificationQueryOptions property eg when the print job is completed, when a print job resource `isFetchable` property value becomes true etc. | [Universal Print Service](https://docs.microsoft.com/en-us/graph/universal-print-webhook-notifications) |
+| notificationQueryOptions | string | OData Query Options for specifying value for the targeting resource. Clients receive notifications when resource reaches the state matching the query options provided here. With this new property in the subscription creation payload along with all existing properties, Webhooks will deliver notifications whenever a resource reaches the desired state mentioned in the notificationQueryOptions property eg when the print job is completed, when a print job resource `isFetchable` property value becomes true etc. | [Universal Print Service](/graph/universal-print-webhook-notifications) |
### Maximum length of subscription per resource type
v1.0 Suspiciousipriskevent https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/suspiciousipriskevent.md
Title: "suspiciousIpRiskEvent resource type"
description: "A risk event detected by Azure Active Directory Identity Protection where an account sign-in is attempted from a suspicious IP address. Complete information about risk events can be found in the Azure AD Identity Protection documentation." localization_priority: Normal doc_type: resourcePageType
v1.0 Teams Api Overview https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/teams-api-overview.md
If none of those users are signed in to the Microsoft Teams application/website,
If your app polls to see whether a resource has changed, you can only do that once per day. ([teamsAsyncOperation](teamsasyncoperation.md) is an exception in that it's intended to be polled frequently.) If you need to hear about changes more frequently than that, you should [create a subscription](../api/subscription-post-subscriptions.md) to that resource and receive change notifications (webhooks).
-If you don't find support for the type of subscription you need, we encourage you to provide feedback via [UserVoice](https://microsoftgraph.uservoice.com/forums/920506-microsoft-graph-feature-requests?category_id=359626).
+If you don't find support for the type of subscription you need, we encourage you to provide feedback via the [Microsoft 365 Developer Platform ideas forum](https://techcommunity.microsoft.com/t5/microsoft-365-developer-platform/idb-p/Microsoft365DeveloperPlatform/label-name/Microsoft%20Graph).
When polling for new messages, you must specify a date range where supported. For details, see [get channel messages delta](../api/chatmessage-delta.md).
v1.0 Temporaryaccesspassauthenticationmethod https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/temporaryaccesspassauthenticationmethod.md
Namespace: microsoft.graph
Represents a Temporary Access Pass registered to a user. A Temporary Access Pass is a time-limited passcode that serves as a strong credential and allows onboarding of passwordless credentials. ## Methods+ |Method|Return type|Description| |:|:|:| |[List](../api/temporaryaccesspassauthenticationmethod-list.md)|[temporaryAccessPassAuthenticationMethod](../resources/temporaryaccesspassauthenticationmethod.md) collection|Retrieve a list of a user's **temporaryAccessPassAuthenticationMethod** objects and their properties. Users can only have one Temporary Access Pass authentication method.| |[Create](../api/temporaryaccesspassauthenticationmethod-post.md)|[temporaryAccessPassAuthenticationMethod](../resources/temporaryaccesspassauthenticationmethod.md)|Create a user's **temporaryAccessPassAuthenticationMethod** object.|
-|[Get](../api/temporaryaccesspassauthenticationmethod-get.md)|[temporaryAccessPassAuthenticationMethod](../resources/temporaryaccesspassauthenticationmethod.md)|Retrieve the properties of the user's **temporaryAccessPassAuthenticationMethod** object.||
+|[Get](../api/temporaryaccesspassauthenticationmethod-get.md)|[temporaryAccessPassAuthenticationMethod](../resources/temporaryaccesspassauthenticationmethod.md)|Retrieve the properties of the user's **temporaryAccessPassAuthenticationMethod** object.|
|[Delete](../api/temporaryaccesspassauthenticationmethod-delete.md)|None|Delete a user's **temporaryAccessPassAuthenticationMethod** object.| ## Properties
v1.0 Unifiedroleeligibilityschedulerequest https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/unifiedroleeligibilityschedulerequest.md
Title: "unifiedRoleEligibilityScheduleRequest resource type"
description: "Represents the request for eligible role assignment operations through Azure AD Privileged Identity Management." localization_priority: Normal doc_type: resourcePageType
Administrators can use `unifiedRoleEligibilityScheduleRequest` to create and/or
|appScopeId|String|Id of the app specific scope when the assignment scope is app specific. The scope of an assignment determines the set of resources for which the principal has been granted access. Directory scopes are shared scopes stored in the directory that are understood by multiple applications. Use "/" for tenant-wide scope. App scopes are scopes that are defined and understood by this application only.| |directoryScopeId|String|Id of the directory object representing the scope of the assignment. The scope of an assignment determines the set of resources for which the principal has been granted access. Directory scopes are shared scopes stored in the directory that are understood by multiple applications. App scopes are scopes that are defined and understood by this application only.| |id|String|The unique identifier for the unifiedRoleEligibilityScheduleRequest.|
-|isValidationOnly|Boolean|Boolean|A boolean that determines whether the call is a validation or an actual call. Only set this property if you want to check whether an activation is subject to additional rules like MFA before actually submitting the request.|
+|isValidationOnly|Boolean|A boolean that determines whether the call is a validation or an actual call. Only set this property if you want to check whether an activation is subject to additional rules like MFA before actually submitting the request.|
|justification|String|A message provided by users and administrators when create the request about why it is needed.| |principalId|String| Objectid of the principal to which the assignment is being granted to.| |roleDefinitionId|String|ID of the unifiedRoleDefinition the assignment is for. Read only.|
v1.0 Userflowlanguageconfiguration https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/beta/resources/userflowlanguageconfiguration.md
Namespace: microsoft.graph
User flows language customization is a feature that allows a given user flow to support customization of multiple languages, from all the built-in languages to a custom language.
-For [Azure Active Directory B2C user flows](https://docs.microsoft.com/azure/active-directory-b2c/user-flow-language-customization#supported-languages), you can leverage the built-in languages or provide the language customizations for a language that is not currently built-in by default. For [Azure Active Directory user flows](https://docs.microsoft.com/azure/active-directory/external-identities/user-flow-customize-language), you can only leverage the built-in languages provided by Microsoft. Both user flows for Azure Active Directory B2C and Azure Active Directory support customizing the language and strings shown to users as they go through the journeys you configure with your user flows.
+For [Azure Active Directory B2C user flows](/azure/active-directory-b2c/user-flow-language-customization#supported-languages), you can leverage the built-in languages or provide the language customizations for a language that is not currently built-in by default. For [Azure Active Directory user flows](/azure/active-directory/external-identities/user-flow-customize-language), you can only leverage the built-in languages provided by Microsoft. Both user flows for Azure Active Directory B2C and Azure Active Directory support customizing the language and strings shown to users as they go through the journeys you configure with your user flows.
## Methods
v1.0 B2xidentityuserflow Put Apiconnectorconfiguration https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/api/b2xidentityuserflow-put-apiconnectorconfiguration.md
HTTP/1.1 204 No Content
The following is an example of the request. -
-# [HTTP](#tab/http)
<!-- { "blockType": "request", "name": "put_b2xuserflows-apiconnectorconfiguration_disable-postAttributeCollection"
Content-Type: application/json
{ } ```
-# [JavaScript](#tab/javascript)
-
-# [Objective-C](#tab/objc)
-
-# [Java](#tab/java)
-- #### Response
v1.0 Organizationalbrandingproperties Update https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/api/organizationalbrandingproperties-update.md
The following request updates the banner logo for the default branding.
The following is an example of the request.
-# [HTTP](#tab/http)
<!-- { "blockType": "request", "name": "update_organizationalbrandingproperties_2"
v1.0 User Checkmembergroups https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/api/user-checkmembergroups.md
Title: "checkMemberGroups" description: "Check for membership in the specified list of groups. Returns from the list those groups of which"-+ localization_priority: Priority ms.prod: "users" doc_type: apiPageType
v1.0 User List Memberof https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/api/user-list-memberof.md
Title: "List memberOf" description: "Get groups and directory roles that the user is a direct member of. "-+ localization_priority: Priority ms.prod: "users" doc_type: apiPageType
v1.0 Alternativesecurityid https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/resources/alternativeSecurityId.md
Title: "alternativeSecurityId resource type"
description: "For internal use only." localization_priority: Normal doc_type: resourcePageType
v1.0 Assignedlicense https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/resources/assignedlicense.md
Title: "assignedLicense resource type"
description: "Represents a license assigned to a user. The **assignedLicenses** property of the user entity is a collection of **assignedLicense**." localization_priority: Normal doc_type: resourcePageType
v1.0 Azure Ad Auditlog Overview https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/resources/azure-ad-auditlog-overview.md
Namespace: microsoft.graph
Azure Active Directory (Azure AD) tracks user activity and creates reports that help you understand how your users access and use Azure AD services. Use the Microsoft Graph API for Azure AD to analyze the data in these reports and to create custom solutions tailored to your organization's specific needs.
-The availability of these activity reports is governed by the Azure AD data retention policies. For more information, see [data retention policies](https://docs.microsoft.com/azure/active-directory/reports-monitoring/reference-reports-data-retention#how-long-does-azure-ad-store-the-data).
+The availability of these activity reports is governed by the Azure AD data retention policies. For more information, see [data retention policies](/azure/active-directory/reports-monitoring/reference-reports-data-retention#how-long-does-azure-ad-store-the-data).
## What are Azure AD activity logs?
v1.0 Azure Ad Overview https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/resources/azure-ad-overview.md
The following table lists some common use cases for Azure AD resources.
| Get information about an organization, such as its business address, technical and notification contacts, the service plans that it's subscribed to, and the domains associated with it. | [organization](../resources/organization.md) | N/A | | Get information about the service SKUs that a company is subscribed to. | [subscribedSku](../resources/subscribedsku.md) | N/A | | Invite external (guest) users to an organization. | [invitation](../resources/invitation.md) | [What is Azure AD B2B collaboration?](/azure/active-directory/active-directory-b2b-what-is-azure-ad-b2b) |
-| Manage branding for the sign-in experience of an organization. | [organizationalbranding](../resources/organizationalbrandingproperties.md) | [Add branding to your organization's Azure Active Directory sign-in page](https://docs.microsoft.com/azure/active-directory/fundamentals/customize-branding)|
+| Manage branding for the sign-in experience of an organization. | [organizationalbranding](../resources/organizationalbrandingproperties.md) | [Add branding to your organization's Azure Active Directory sign-in page](/azure/active-directory/fundamentals/customize-branding)|
| **Consent requests** | | | | Manage the consent request workflow for users attempting to access apps that require admin authorization. | [Consent requests API](../resources/consentrequests-root.md) |[Configure the admin consent workflow](/azure/active-directory/manage-apps/configure-admin-consent-workflow) |
v1.0 Entity https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/resources/entity.md
Title: "entity resource type"
-description: ""
+description: "Represents an entity."
localization_priority: Normal-+ doc_type: resourcePageType
v1.0 Extension https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/resources/extension.md
Title: "extension resource type"
description: "An abstract type to support the OData v4 open type openTypeExtension." localization_priority: Normal doc_type: resourcePageType
v1.0 Invitation https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/resources/invitation.md
Creating an invitation will return a redemption URL in the response (*inviteRede
|[Create invitation](../api/invitation-post.md) | invitation | Write properties and relationships of invitation object.| ## Properties
-| Property | Type |Description|
-|:|:--|:-|
+
+| Property| Type|Description|
+|:|:|:|
|invitedUserDisplayName|String|The display name of the user being invited.|
-|invitedUserEmailAddress|String|The email address of the user being invited. Required. The following special characters are not permitted in the email address:<br><ul><li>Tilde (~)</li><li>Exclamation point (`!`)</li><li>Number sign (`#`)</li><li>Dollar sign (`$`)</li><li>Percent (`%`)</li><li>Circumflex (`^`)</li><li>Ampersand (`&`)</li><li>Asterisk (`*`)</li><li>Parentheses (`( )`)</li><li>Plus sign (`+`)</li><li>Equal sign (`=`)</li><li>Brackets (`[ ]`)</li><li>Braces (`{ }`)</li><li>Backslash (`\`)</li><li>Slash mark (`/`)</li><li>Pipe (`\|`)</li><li>Semicolon (`;`)</li><li>Colon (`:`)</li><li>Quotation marks (`"`)</li><li>Angle brackets (`< >`)</li><li>Question mark (`?`)</li><li>Comma (`,`)</li></ul><br>However, the following exceptions apply:<br><ul><li>A period (`.`) or a hyphen (`-`) is permitted anywhere in the user name, except at the beginning or end of the name.</li><li>An underscore (`_`) is permitted anywhere in the user name. This includes at the beginning or end of the name.</li></ul>|
-|invitedUserMessageInfo|[invitedUserMessageInfo](invitedusermessageinfo.md)|Additional configuration for the message being sent to the invited user, including customizing message text, language and cc recipient list.|
+|invitedUserEmailAddress|String|The email address of the user being invited. Required. The following special characters are not permitted in the email address:<br><ul><li>Tilde (`~`)</li><li>Exclamation point (`!`)</li><li>Number sign (`#`)</li><li>Dollar sign (`$`)</li><li>Percent (`%`)</li><li>Circumflex (`^`)</li><li>Ampersand (`&`)</li><li>Asterisk (`*`)</li><li>Parentheses (`( )`)</li><li>Plus sign (`+`)</li><li>Equal sign (`=`)</li><li>Brackets (`[ ]`)</li><li>Braces (`{ }`)</li><li>Backslash (`\`)</li><li>Slash mark (`/`)</li><li>Pipe (`\|`)</li><li>Semicolon (`;`)</li><li>Colon (`:`)</li><li>Quotation marks (`"`)</li><li>Angle brackets (`< >`)</li><li>Question mark (`?`)</li><li>Comma (`,`)</li></ul><br>However, the following exceptions apply:<br><ul><li>A period (`.`) or a hyphen (`-`) is permitted anywhere in the user name, except at the beginning or end of the name.</li><li>An underscore (`_`) is permitted anywhere in the user name. This includes at the beginning or end of the name.</li></ul>|
+|invitedUserMessageInfo|[invitedUserMessageInfo](invitedusermessageinfo.md|Additional configuration for the message being sent to the invited user, including customizing message text, language and cc recipient list.|
|sendInvitationMessage|Boolean|Indicates whether an email should be sent to the user being invited or not. The default is false.| |inviteRedirectUrl|String|The URL the user should be redirected to once the invitation is redeemed. Required.|
-|inviteRedeemUrl|String|The URL the user can use to redeem their invitation. Read-only|.
+|inviteRedeemUrl|String|The URL the user can use to redeem their invitation. Read-only.|
|invitedUserType|String|The userType of the user being invited. By default, this is `Guest`. You can invite as `Member` if you are a company administrator. |
-|status|String|The status of the invitation. Possible values are: `PendingAcceptance`, `Completed`, `InProgress`, and `Error`|
+|status|String|The status of the invitation. Possible values are: `PendingAcceptance`, `Completed`, `InProgress`, and `Error`.|
## Relationships | Relationship | Type |Description|
v1.0 Licensedetails https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/resources/licensedetails.md
Title: "licenseDetails resource type"
description: "Contains information about a license assigned to a user." localization_priority: Normal doc_type: resourcePageType
v1.0 Opentypeextension https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/resources/opentypeextension.md
Open extensions are supported by the following resources in the corresponding ve
|Resource |Version | |:|:-|
-| [Administrative unit](/graph/api/resources/administrativeunit?view=graph-rest-beta) | GA |
+| [Administrative unit](/graph/api/resources/administrativeunit) | GA |
| [Calendar event](event.md) | GA | | Group [calendar event](event.md) | GA | | Group conversation thread [post](post.md) | GA |
Apply the following guidelines when you create open extensions on Outlook resour
### Use open extensions (for Outlook resources) or extended properties Open extensions are the recommended solution for most scenarios involving storing and accessing custom data. If, however,
-you need to access custom data for Outlook MAPI properties that are not already exposed through the
-[Microsoft Graph API metadata](../index.md), you can use
+you need to access custom data for Outlook MAPI properties that are not already exposed through the [Microsoft Graph API metadata](/graph/traverse-the-graph#microsoft-graph-api-metadata), you can use
[extended properties and its REST API](extended-properties-overview.md). You can verify which properties the metadata
-exposes at [https://graph.microsoft.com/v1.0/$metadata](https://graph.microsoft.com/v1.0/$metadata).
+exposes at https://graph.microsoft.com/v1.0/$metadata.
## JSON representation
v1.0 Organizationalbrandingproperties https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/resources/organizationalbrandingproperties.md
doc_type: "resourcePageType"
# organizationalBrandingProperties resource type >[!NOTE]
->Adding custom branding requires you to use Azure Active Directory Premium 1, Premium 2, or Basic editions, or to have a Microsoft 365 license. For more information about licensing and editions, see [Sign up for Azure AD Premium](https://docs.microsoft.com/azure/active-directory/fundamentals/active-directory-get-started-premium).<br><br>Azure AD Premium and Basic editions are available for customers in China using the worldwide instance of Azure Active Directory. Azure AD Premium and Basic editions aren't currently supported in the Azure service operated by 21Vianet in China. For more information, talk to us using the [Azure Active Directory Forum](https://feedback.azure.com/forums/169401-azure-active-directory/).
+>Adding custom branding requires you to use Azure Active Directory Premium 1, Premium 2, or Basic editions, or to have a Microsoft 365 license. For more information about licensing and editions, see [Sign up for Azure AD Premium](/azure/active-directory/fundamentals/active-directory-get-started-premium).<br><br>Azure AD Premium and Basic editions are available for customers in China using the worldwide instance of Azure Active Directory. Azure AD Premium and Basic editions aren't currently supported in the Azure service operated by 21Vianet in China. For more information, talk to us using the [Azure Active Directory Forum](https://feedback.azure.com/forums/169401-azure-active-directory/).
Contains details about the organization's branding.
v1.0 Patternedrecurrence https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/resources/patternedrecurrence.md
Title: "patternedRecurrence resource type"
description: "The recurrence pattern and range." localization_priority: Normal doc_type: resourcePageType
v1.0 Provisioningerrorinfo https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/resources/provisioningerrorInfo.md
Title: "provisioningErrorInfo resource type"
description: "Describes the status of the provisioning event and the associated errors." localization_priority: Normal doc_type: "resourcePageType"
Describes the status of the provisioning event and the associated errors.
|:-|:|:| |additionalDetails|String|Additional details in case of error.| |errorCategory|provisioningStatusErrorCategory|Categorizes the error code. Possible values are `failure`, `nonServiceFailure`, `success`, `unknownFutureValue`|
-|errorCode|String|Unique error code if any occurred. [Learn more](https://docs.microsoft.com/azure/active-directory/reports-monitoring/concept-provisioning-logs#error-codes)|
+|errorCode|String|Unique error code if any occurred. [Learn more](/azure/active-directory/reports-monitoring/concept-provisioning-logs#error-codes)|
|reason|String|Summarizes the status and describes why the status happened.| |recommendedAction|String|Provides the resolution for the corresponding error.|
v1.0 Recurrencepattern https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/resources/recurrencepattern.md
Title: "recurrencePattern resource type"
description: "Describes the frequency by which a recurring event repeats. " localization_priority: Normal doc_type: resourcePageType
v1.0 Recurrencerange https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/resources/recurrencerange.md
Title: "recurrenceRange resource type"
description: "Describes a date range over which a recurring event repeats. " localization_priority: Normal doc_type: resourcePageType
v1.0 Settingtemplatevalue https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/resources/settingtemplatevalue.md
Title: "settingTemplateValue resource type"
description: "Represents an individual template setting definition, including the default value for the setting, if the setting is not instantiated." localization_priority: Normal doc_type: resourcePageType
v1.0 Settingvalue https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/resources/settingvalue.md
Title: "settingValue resource type"
description: "A setting represented by a name/value pair." localization_priority: Normal doc_type: resourcePageType
v1.0 Subscription https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/resources/subscription.md
A subscription allows a client app to receive change notifications about changes
- Content in the hierarchy of a root folder [driveItem][] in OneDrive for Business, or of a root folder or subfolder [driveItem][] in a user's personal OneDrive. - A [list][] under a SharePoint [site][]. - A [message][], [event][], or [contact][] in Outlook.-- A [printer][] (when a print job for the printer gets to JobFetchable state - ready to be fetched for printing) and a [printTaskDefinition][] in Universal Print. For more information, see [Subscribe to change notifications from cloud printing APIs](https://docs.microsoft.com/en-us/graph/universal-print-webhook-notifications).
+- A [printer][] (when a print job for the printer gets to JobFetchable state - ready to be fetched for printing) and a [printTaskDefinition][] in Universal Print. For more information, see [Subscribe to change notifications from cloud printing APIs](/graph/universal-print-webhook-notifications).
- A [user][] or [group][] in Azure Active Directory. See [Use the Microsoft Graph API to get change notifications](webhooks.md) for the possible resource path values for each supported resource.
See [Use the Microsoft Graph API to get change notifications](webhooks.md) for t
| encryptionCertificateId | string | A custom app-provided identifier to help identify the certificate needed to decrypt resource data. Optional.| All | | latestSupportedTlsVersion | String | Specifies the latest version of Transport Layer Security (TLS) that the notification endpoint, specified by **notificationUrl**, supports. The possible values are: `v1_0`, `v1_1`, `v1_2`, `v1_3`. </br></br>For subscribers whose notification endpoint supports a version lower than the currently recommended version (TLS 1.2), specifying this property by a set [timeline](https://developer.microsoft.com/graph/blogs/microsoft-graph-subscriptions-deprecating-tls-1-0-and-1-1/) allows them to temporarily use their deprecated version of TLS before completing their upgrade to TLS 1.2. For these subscribers, not setting this property per the timeline would result in subscription operations failing. </br></br>For subscribers whose notification endpoint already supports TLS 1.2, setting this property is optional. In such cases, Microsoft Graph defaults the property to `v1_2`. | All | | notificationContentType | string | Desired content-type for MS Graph change notifications for supported resource types. The default content-type is the "application/json" content-type. | All |
-| notificationQueryOptions | string | OData Query Options for specifying value for the targeting resource. Clients receive notifications when resource reaches the state matching the query options provided here. With this new property in the subscription creation payload along with all existing properties, Webhooks will deliver notifications whenever a resource reaches the desired state mentioned in the notificationQueryOptions property eg when the print job is completed, when a print job resource `isFetchable` property value becomes true etc. | [Universal Print Service](https://docs.microsoft.com/en-us/graph/universal-print-webhook-notifications) |
+| notificationQueryOptions | string | OData Query Options for specifying value for the targeting resource. Clients receive notifications when resource reaches the state matching the query options provided here. With this new property in the subscription creation payload along with all existing properties, Webhooks will deliver notifications whenever a resource reaches the desired state mentioned in the notificationQueryOptions property eg when the print job is completed, when a print job resource `isFetchable` property value becomes true etc. | [Universal Print Service](/graph/universal-print-webhook-notifications) |
### Maximum length of subscription per resource type
v1.0 Teams Api Overview https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/resources/teams-api-overview.md
If none of those users are signed in to the Microsoft Teams application/website,
If your app polls to see whether a resource has changed, you can only do that once per day. ([teamsAsyncOperation](teamsasyncoperation.md) is an exception in that it's intended to be polled frequently.) If you need to hear about changes more frequently than that, you should [create a subscription](../api/subscription-post-subscriptions.md) to that resource and receive change notifications (webhooks).
-If you don't find support for the type of subscription you need, we encourage you to provide feedback via [UserVoice](https://microsoftgraph.uservoice.com/forums/920506-microsoft-graph-feature-requests?category_id=359626).
+If you don't find support for the type of subscription you need, we encourage you to provide feedback via the [Microsoft 365 Developer Platform ideas forum](https://techcommunity.microsoft.com/t5/microsoft-365-developer-platform/idb-p/Microsoft365DeveloperPlatform/label-name/Microsoft%20Graph).
When polling for new messages, you must specify a date range where supported. For details, see [get channel messages delta](../api/chatmessage-delta.md).
v1.0 Userflowlanguageconfiguration https://github.com/microsoftgraph/microsoft-graph-docs/commits/master/api-reference/v1.0/resources/userflowlanguageconfiguration.md
Namespace: microsoft.graph
Allows a user flow to support the use of multiple languages.
-For [Azure Active Directory user flows](https://docs.microsoft.com/azure/active-directory/external-identities/user-flow-customize-language), you can only leverage the built-in languages provided by Microsoft. User flows for Azure Active Directory support defining the language and strings shown to users as they go through the journeys you configure with your user flows.
+For [Azure Active Directory user flows](/azure/active-directory/external-identities/user-flow-customize-language), you can only leverage the built-in languages provided by Microsoft. User flows for Azure Active Directory support defining the language and strings shown to users as they go through the journeys you configure with your user flows.
## Methods